August 21, 2025

Advanced Domain Intelligence and Enhanced Intelligence Repository API Endpoints

ThreatNG is excited to announce a significant platform update, introducing major enhancements to two core capabilities: Domain Name Permutations and our DarCache Intelligence Repositories. These updates provide our users with a more proactive and intelligent approach to security, offering unparalleled visibility into their external attack surface and digital risk landscape. We have improved our ability to uncover potential digital threats and streamlined the way you can use our comprehensive intelligence, empowering your team to make more informed decisions and strengthen your overall security posture.

Advanced Domain Name Permutations with Categorization and Customizable Keywords

ThreatNG is excited to announce a powerful update to its Domain Name Permutations capability, which provides a comprehensive defense against a wide range of digital risks. This feature now includes advanced categorization and customizable keyword and TLD lists, providing a more proactive and intelligent approach to security.

What's New?

We've introduced a new system that not only finds available and taken domain permutations but also categorizes them to provide greater context and actionable intelligence. This categorization is crucial because it helps you understand the specific methods attackers use to create fraudulent domains, allowing for more targeted and efficient threat detection and response. For example, you can now instantly differentiate between a simple misspelling and a deliberate, malicious attempt at brand impersonation, such as homoglyphs or bitsquatting. This insight enables you to prioritize risks and allocate your resources more effectively.

In addition to our pre-built lists, you can now enrich your investigations by adding your user-defined Top-Level Domains (TLDs) and Targeted Key Words. This ensures that the analysis is always relevant to your organization’s unique digital exposure and risk tolerance.

Key Features of the Update

• Comprehensive Categorization: ThreatNG can uncover and categorize a full range of domain manipulations, including Additions, Omissions, Replacements, Transpositions, Subdomain Impersonation, and more. This allows for a more nuanced understanding of threats.

• Customizable TLDs: You can add your TLDs to align with new business initiatives or to assess new partners. The platform also includes a pre-built selection of TLD categories, from Generic TLDs like .com to Country Code TLDs like .de and Internationalized Domain Names (IDNs) like .рф.

• Targeted Keywords: Define and use your keywords to create particular permutations. Our platform offers pre-built keyword categories such as Website & Infrastructure (www, http), Business & Financial (pay, payment), and even Critical Language (awful, bad). This helps you uncover threats that are specific to your business operations and brand identity.

• Actionable Intelligence: For every questionable domain identified, ThreatNG provides the associated IP address and mail record, giving you the critical information needed to respond immediately.

Advanced API Endpoints for All DarCache Intelligence Repositories

ThreatNG is excited to announce a significant enhancement to the API endpoints for all of our intelligence repositories, collectively known as DarCache. This update provides unparalleled visibility into your external attack surface, enabling proactive threat mitigation and informed decision-making for a comprehensive view of your organization's security posture.

Our continuously updated intelligence repositories collect and vet data from numerous sources to deliver a holistic view of your digital risk landscape. The newly enhanced API endpoints now provide direct access to the following repositories:

• DarCache Dark Web: Dive deep into a part of the internet not indexed by search engines to uncover threats and mentions that lurk in the shadows.

• DarCache Rupture (Compromised Credentials): Go beyond a simple list of credentials. This database includes usernames, emails, and organizations that have been compromised, providing granular detail to assess your exposure to past breaches.

• DarCache Ransomware: Stay ahead of attacks by tracking over 70 ransomware gangs and their activities. This intelligence helps you understand the threat landscape and defend against a growing risk.

• DarCache Vulnerability: Move beyond just a list of CVEs. This repository offers a holistic view of vulnerabilities by providing context on their real-world exploitability, the likelihood of exploitation, and potential impact. It incorporates data from sources like NVD for technical characteristics, EPSS for a probabilistic estimate of exploitation likelihood, and KEV for vulnerabilities actively being exploited in the wild.

• DarCache Mobile: This repository is unique in its focus on mobile app exposure, identifying exposed sensitive data such as authentication tokens, API keys, and private keys to help you strengthen your security posture.

• DarCache ESG: Gain a competitive edge and better understand your compliance posture with data on discovered environmental, social, and governance (ESG) violations, highlighting offenses related to various sectors like healthcare, finance, and government contracting.

• DarCache Bug Bounty: Leverage crowdsourced security research to discover and address vulnerabilities proactively. This repository provides in-depth insight into bug bounty initiatives, including what's in and out of scope.

• DarCache 8-K: This unique collection of cybersecurity incident disclosures from publicly traded companies gives you an early warning system to identify threats that may impact your organization proactively.

• DarCache Bank Identification Numbers (BIN): Access a database of essential information related to Bank Identification Numbers used in financial transactions worldwide, which can be critical for fraud detection.