{"id":16894484,"url":"https://github.com/stamparm/blackbook","last_synced_at":"2026-02-02T23:48:55.049Z","repository":{"id":46234617,"uuid":"155225436","full_name":"stamparm/blackbook","owner":"stamparm","description":"Blackbook of malware domains","archived":false,"fork":false,"pushed_at":"2025-06-12T18:43:24.000Z","size":3582,"stargazers_count":255,"open_issues_count":1,"forks_count":44,"subscribers_count":16,"default_branch":"master","last_synced_at":"2025-06-28T12:45:45.112Z","etag":null,"topics":["domains","intrusion-detection","malware-detection","network-forensics","network-monitoring","security","threats"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/stamparm.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2018-10-29T14:26:35.000Z","updated_at":"2025-06-25T01:50:11.000Z","dependencies_parsed_at":"2024-01-30T03:23:13.031Z","dependency_job_id":"d38c4f11-52ad-4d05-88ad-475e0fd55af8","html_url":"https://github.com/stamparm/blackbook","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/stamparm/blackbook","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/stamparm%2Fblackbook","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/stamparm%2Fblackbook/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/stamparm%2Fblackbook/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/stamparm%2Fblackbook/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/stamparm","download_url":"https://codeload.github.com/stamparm/blackbook/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/stamparm%2Fblackbook/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":29024330,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-02-02T23:43:56.073Z","status":"ssl_error","status_checked_at":"2026-02-02T23:43:49.438Z","response_time":58,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.6:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["domains","intrusion-detection","malware-detection","network-forensics","network-monitoring","security","threats"],"created_at":"2024-10-13T17:18:53.380Z","updated_at":"2026-02-02T23:48:54.981Z","avatar_url":"https://github.com/stamparm.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"![Logo](https://i.imgur.com/Nji9ubM.jpg)\r\n\r\n[![License](https://img.shields.io/badge/license-Public_domain-red.svg)](https://wiki.creativecommons.org/wiki/Public_domain)\r\n\r\n**blackbook** is a historical (black)list of malicious domains created as part of the periodic automated heuristic check (i.e. WHOIS, HTTP, etc.) of newly reported entries from public lists of malicious URLs (currently [CyberCrime](https://cybercrime-tracker.net/), [URLhaus](https://urlhaus.abuse.ch/), [ScumBots](https://twitter.com/scumbots), [Benkow](http://benkow.cc/passwords.php) and [ViriBack](http://tracker.viriback.com/)). Main goal is listing those that are/were malware **dedicated** (e.g. C\u0026C) - thus, excluding compromised sites. It is supposed to be used for detection of malware beaconing infected clients by inspection of associated DNS traffic, with significant reduce of false-positives.\r\n\r\n![Example](https://i.imgur.com/FN8r3um.png)\r\n\r\nUp-to-date detailed CSV list of domains can be found [here](blackbook.csv), while the raw TXT version can be found [here](https://raw.githubusercontent.com/stamparm/blackbook/master/blackbook.txt).\r\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fstamparm%2Fblackbook","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fstamparm%2Fblackbook","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fstamparm%2Fblackbook/lists"}