Recent months have seen a lot of performance improvements, especially in the source code that runs on the nodes. It took some quite some work and of course resulted in the occasional bug. To thank you all for putting up with this, we're upping some of the asset limits. Here are the changes:
Subscription
pre 2019
2019
Personal
15
15
Premium
50
100
Business
200
500
Enterprise
1000
3000
Additionally, the maximum number of users and subnets on the Premium subscription has increase from 3 to 5.
You can now monitor this and get alerts pushed to your phone. Technically, it's a rather simple thing. But functionally it's quite useful. If you're afraid someone hacks your website and changes the bank account you have published there, you are now covered.
This traps works for any text that has to be present on the website. So you can monitor for a change in the contact email address by just specifiying the urls and the email address, and you'll get notified when the email address disappears.
Besides monitoring for a specific text, you can also get notified for any change on the website (including layout changes), or if the website is not available due to some error. You can enter any website under the tab events in traps. It doesn't have to be for a domain that you've registered under assets.
Yes, I still see things I can improve on current functionality, and yes, I'll keep working on that. But sometimes you just have to indulge yourself. So, I've just added phishy domain tracking to ShadowTrackr.
A phishy domain is a domain that looks similar enough to one of your domains for it to be used in phishing attempts. That is, someone is pretending to be you and phishing your clients. I've been testing several algorithms to generate phishy domains and settled on a combination that seemed to work well.
The number of phishy domain candidates generated per url can vary between 1 and more than 1000 (it's shown on the url page). This number depends on the domain length, top level domain and characters used. All candidates are tracked and for those domains responding the information is shown in the new phishy domain report (rather obviously found under "reports"). You can quickly see if it's harmless (because it's redirected to the original) or click through to more detailed information like mailservers, nameserver and website similarity percentages that will help you determine if it's malicious. Of course, you'll get notifications when likely phishy domains are found.
Although I've been testing for a few weeks with this, I expect there's still a lot to be learned about tracking phishy domains and I'll be revisiting this subject.
