There are some assets that are pretty common that should almost always be rejected when running Inquisitor. Examples include the registrant name for Verizon, top-level TLDs, etc. I'm guessing this will make it easier to review the intelligence database.
This will also prevent dangerous false positives. For example, if we're doing an OSINT analysis for "Nominet UK" who owns the cok.uk domain, then we risk classifying everything under co.uk as belonging to the target. If we reject co.uk outright, we can avoid this dangerous condition,
There are some assets that are pretty common that should almost always be rejected when running Inquisitor. Examples include the registrant name for Verizon, top-level TLDs, etc. I'm guessing this will make it easier to review the intelligence database.
This will also prevent dangerous false positives. For example, if we're doing an OSINT analysis for "Nominet UK" who owns the
cok.uk
domain, then we risk classifying everything underco.uk
as belonging to the target. If we rejectco.uk
outright, we can avoid this dangerous condition,