NetFort tips and tricks - Did you know you can use LANGuardian to monitor suspicious Top Level Domains (TLDs)?

  • 1
  • Idea
  • Updated 4 years ago
Earlier in the week, security firm Blue Coat Systems, Inc. released a listing of the 10 most dangerous web domains, Blue Coat asserts that more than 95% of the sites on these 10 Top Level Domains (TLDs) are suspect. Read more. The listing is as follows:
  1. .zip
  2. .review
  3. .country
  4. .kim
  5. .cricket
  6. .science
  7. .work
  8. .party
  9. .gq
  10. .link

The following procedure describes the steps to show any activity associated with these top level domains (TLDs). The report can be saved on the LANGuardian system as a custom report and can be re-run any time updated information is needed.

  1. Click on Reports in the LANGuardian menu bar.
  2. In the Web section, click on Top Website Domains, LANGuardian displays the Top Website Domains report.
  3. In the Website Domain Name field (Matches regexp selected) place \.(zip|review|country|kim|cricket|science|work|party|gq|link)$
  4. Click View.
  5. When LANGuardian displays the report, click More Actions on the report menu bar and select Save Report.
  6. Enter a name and description for the report, then click Save. The new report will be listed in the Custom Reports section.

Most of the basic Regular Expressions (RegEx) and IP Address/Subnet needs are covered in the LANGuardian Tip Sheet.

And, of course, please contact us any time if you have any questions about web activity or indeed any other aspect of network monitoring with LANGuardian.

Archived Tips & Tricks are available on the NetFort forum.

Photo of Aisling Brennan

Aisling Brennan, Official Rep

  • 393 Posts
  • 8 Reply Likes

Posted 4 years ago

  • 1

Be the first to post a reply!