Useful Resources for Investigating DNS Abuse/Misuse - The Security Skeptic

WHOIS Lookup (Domain Registration)	DNS Lookup (DNS Zone Data & More)	IP WHOIS Lookup (IP and ASN Info)	Reputation (Domain,IP,ASN,Host,URL)	Content (Virus,Malware,)
Useful Resources for Investigating DNS Abuse/Misuse This page complements the ICANN DNS Abuse/Misuse Training Course. All of the tools and information gathering sites demonstrated during training (and more) can be accessed here. If you wish to set this as a default page in your browser, contact Dave Piscitello to request Google Drive access to a zip file containing the page and supporting files.
Maintained by Dave Piscitello Contact
Domain Tools whois and more	Robtex Swiss Army Knife name server & IP info, reputation	ARIN RWS Whois IP registration data	MXToolbox email header parser	URLQuery.net web malware analysis
101Domains whois, ccTLD info	Passive DNS replication DNS resolver info	Domain Tool's Reverse IP IP-to-domain query	SiteVet ASN reputation	Virus Total virus/malware analysis
Domain Dossier Whois, IP tools	nslookup.exe MSDOS command DNS query tool	DNSStuff tools Variety of DNS tools	Sender Score email sender reputation	ISEC Lab's Wepawet web threat analysis
MSDOS Whois Clients	dig command Linux, BSD	Shadowserver IP-BGP ASN query tool	Project Honeypot malicious IP check	ISEC Lab's Anubis malware binary analysis
GNU jwhois command Linux, Windows	host command Linux, BSD	Team Cymru IP-to-ASN Lookup	Host Exploit hosting provider reputation	malwr malware analysis
InterNIC Whois whois, registrar Whois	Spamhaus domain block list	Team Cymru IP-to-ASN ASN query tool	ipTracker Online email header analysis	curl commands copy URL without executing scripts
ARIN WhoWAS historical IP whois	DNSToolkit whois, nslookup	Ping, trace, blacklist check, more	DNS history historical domain whois	wget command get web page without executing scripts