search

chartingshow / crypto-firewall

🎁 Blocks browser-based crypto mining, cryptojacking, banking and crypto malware and phishing websites, apps and hackers command-and-control (C2) servers.
GNU General Public License v3.0
14 stars 0 forks source link

Block and process email domains lists #348

Open summercms opened 1 year ago

summercms commented 1 year ago

Enhancement idea

Description

Hackers use dummy domains to send spam emails containing malware to victims. We have a long list of known email addresses sent by the hackers.

This issue, processes the list of domains and adds the bad ones to the block lists.

The good domains will be either added to the whitelists e.g. aol.com is a major website and shouldn't be blocked. However, good domains not in the top 1 million internet websites should not be added to the whitelists and just ignored (as they maybe confirmed later on to be sending spam/malware).

Links

n/a

IOC

I2P websites

n/a

IPFS websites

n/a

Tor2web websites

n/a

TOR websites

n/a

URL's

n/a

Folders

n/a

Sub-Domains

n/a

Domains

n/a

IP's

n/a

Emails

n/a

Wallet addresses

n/a

Mining pool addresses

n/a

summercms commented 1 year ago

To do:

  1. protected-domain-names.txt
  2. protected-domain-names-regex.txt
  3. Process email domains through bulk VirusTotal tool.