Newsletter 2020-12-22

Published on December 22, 2020 by

December 2020: Telegram channel

Subscribe to our new Telegram channel at: https://t.me/intelxio

New Telegram subscribers receive a free 3-day Professional license code! We will post frequent updates and technical background info to this channel.

🏛 Open Government

We are archiving all .GOV and .MIL websites. Any changes will be preserved, any alterations detected! Read the full blog post here.

You can find it as the “Government US” category in the Advanced menu. It contains already more than 5 TB of public data.

📝 Trivia

  • Group-IB maintains a competitor list that is banned from attending their “CyberCrimeCon 2020” conference. See the list here.
  • We have purchased a WinRAR license! 🎉
  • Our storage servers are soon running out of… letters of the alphabet (simply due to the count of hard disks and the amount of drive letters required). Fortunately, drives can be mounted as folders. Screenshot here.
  • We started using 18 TB HDDs. Most of them work fine, but one crashed almost immediately due to a “bad block” causing file system corruption, a bugcheck in a driver, and subsequently the crash of the entire server.
  • Someone made more than 6 million requests to our phonebook.cz in a short amount of time. We developed our own application firewall which is actively blocking the offender. Read details in this Twitter thread.

📰 Darknet marketplaces and hacks in the media

  • The SolarWinds Sunburst domain list was indexed here. These domains can be an indicator of compromise.
  • Joker’s Stash, a credit card marketplace, was temporarily disrupted (news article) by redirecting the domain “jstash.bazar”. One of the still active Tor domains “jstash5cxe6ixxb2.onion” is known in Intelligence X since 2016.
  • The Chinese Communits Party leak with 1.95 million members was indexed here.
  • Europol took down the Sipulimarket. Intelligence X has some historical versions. Twitter thread.

Kleissner Investments s.r.o., Na Strzi 1702/65, 14000 Prague, Czech Republic

If you don’t wish to receive this newsletter anymore, please click here to unsubscribe.

Related articles

List of buckets

Published on May 5, 2022 by

At Intelligence X we categorize data sources into buckets. Buckets can be used as filters and to broadly identify the source of individual search results. For example, the bucket “Darknet Tor” indicates the result origins from some a Tor hidden service (.onion domain) and was collected by our Tor crawler. Buckets have human readable names


Adding support for new top-level domains

Published on April 6, 2022 by

We just added support for an additional 152 top-level domains (TLDs), increasing the support to 511 TLDs in total. Support means that you can search for those domains across intelx.io and APIs, and internally that our backend supports processing them. While you can start searching for them immediately, it will take some time until our


A word of #OPSEC @theguardian

Published on March 7, 2022 by

Earlier today at 11:24 The Guardian Journalist Shaun Walker posted the security procedure and the security token used to pass makeshift checkpoints in Ukraine related to the Russian Ukrainian war: This is a reminder to journalists – and the public – to take OPSEC (operations security) seriously and not endanger people on the ground. Posting


Search the blog: