Share this
NEW! Automatically Export DNS Data for Analysis and Compliance
by Kory Underdown on Jun 7, 2022 12:00:00 AM
More than 70% of cyberattacks involve the Domain Name System (DNS) layer.
Additionally, the ability to ingest, correlate, search, and action data from across the entire enterprise and cloud attack surface is becoming increasingly more important.
Announcing DNSFilter’s newest feature: Data Export
Data Export automates the process of exporting query log data from DNSFilter’s AI-powered DNS security solution to Splunk and Amazon S3 buckets. S3 can then be used as an intermediary for SIEM and SOAR products of your choice.
With Data Export, data is exported in near real time and analyzed alongside additional security events and data sources to provide visibility across enterprise environments and respond to threats.
Benefits of Data Export include:
- Automated export: Security teams no longer need to manually export DNS layer data into a security monitoring solution. More than 25 categories of query log data including domain name, request address, server address, and more are automatically exported, saving significant time and resources.
- Long-term search: Finding hidden threats requires the ability to continuously run new analysis on historical data. Data Export allows security teams to retain and analyze historical DNSFilter data in their security monitoring solution.
- Single pane of glass: DNSFilter data can be aggregated alongside all endpoint, cloud workload, and additional enterprise data sources to correlate events and take action in a single location.
Data Export is available to all Basic, Pro, & Enterprise plans for $.25 per user, per month. For more information on how to use Data Export in your organization, join us for the Data Export 101 webinar.
Share this

Our analysis of Tycoon 2FA infrastructure has revealed significant operational changes, including the platform's coordinated expansion surge in Spanish (.es) domains starting April 7, 2025, and evidence suggesting highly targeted subdomain usage patterns. This blog shares our findings from analyzing 11,343 unique FQDNs (fully qualified domain names) and provides 65 root domain indicators of compromise (IOCs) to help network defenders implement mo...

Staying Ahead with Smarter Web Filtering
Across every industry and network environment, content filtering isn’t just a matter of productivity, it’s a front line of defense. From malware and phishing to compliance risks and productivity drains, the threats are real, and the stakes are high.

DNS filtering is a foundational layer of defense and helps to fortify the strongest security stacks. Most organizations use DNSFilter to block the obvious: malware, phishing, and adult content. That’s a great start, but many are missing out on the broader potential of DNS policies.