Domain Name

Information obtained (commonly through registration or activity logs) regarding one or more IP addresses registered with human readable names (ex: mitre.org)

ID: DS0038
Platform: PRE
Collection Layer: OSINT
Version: 1.0
Created: 20 October 2021
Last Modified: 20 October 2021

Data Components

Domain Name: Active DNS

Queried domain name system (DNS) registry data highlighting current domain to IP address resolutions (ex: dig/nslookup queries)

Domain Name: Active DNS

Queried domain name system (DNS) registry data highlighting current domain to IP address resolutions (ex: dig/nslookup queries)

Domain ID Name
Enterprise T1583 Acquire Infrastructure
.001 Domains
Enterprise T1584 Compromise Infrastructure
.001 Domains
.002 DNS Server

Domain Name: Domain Registration

Information about domain name assignments and other domain metadata (ex: WHOIS)

Domain Name: Domain Registration

Information about domain name assignments and other domain metadata (ex: WHOIS)

Domain ID Name
Enterprise T1583 Acquire Infrastructure
.001 Domains
Enterprise T1584 Compromise Infrastructure
.001 Domains

Domain Name: Passive DNS

Logged domain name system (DNS) data highlighting timelines of domain to IP address resolutions (ex: passive DNS)

Domain Name: Passive DNS

Logged domain name system (DNS) data highlighting timelines of domain to IP address resolutions (ex: passive DNS)

Domain ID Name
Enterprise T1583 Acquire Infrastructure
.001 Domains
Enterprise T1584 Compromise Infrastructure
.001 Domains
.002 DNS Server