Top Level Domain zone files –DNS data that are published by registry operators – have many uses beyond the common use as the authoritative source for obtaining IP addresses of the name servers of domain names like securityskeptic.com, typepad,com, or icann.org. Security researchers use TLD zone data while investigating botnets, phishing, or other malicious activities. Online brand protection investigators or intellectual property attorneys use TLD zone data to identify malicious registrations that violate trademarks. Businesses use zone data for marketing intelligence, domain name speculation, SEO and more.
Historically, the only requirement for gaining access to TLD zone data was to agree to an Acceptable Use Policy with each of the relatively small number registry operators. Anticipating that the delegation of hundreds of new TLDs would make this process unwieldy for zone data consumers, the ICANN community has deployed Centralized Zone Data Access (CZDAP), a portal where you can
- create an account,
- create cryptographic keys for secure file transfer,
- select the TLD zone files you wish to access (all is an option),
- identify how you will use zone data,
- agree to terms and conditions, and
- identify the IP address registry operators will whitelist for access.
Once your request is approved, you will be able to download the zones you’ve selected via the dashboard. Zone data consumers who have developed scripts or automation can grab an API from github.
I'll demonstrate the download process once the requests I've made are approved.