Domain siblings are domain names that share the same second-level domain name with a target domain, but have a different top-level domain (TLD). For example, if the target domain is example.com, its domain siblings might include example.net, example.org, and so on.
Domain siblings can be used in various ways, both legitimate and malicious. An organization may register multiple domain names that share the same second-level domain name in order to redirect traffic or protect their brand, however, threat actors may use domain siblings to impersonate a legitimate domain or website in order to deceive users and steal sensitive information.
-
Navigate to
Advanced Query Builder > Domain Queries > siblings -
Specify a
domain -
Click
Search
Saving queries
Organizational users are able to save individual queries ran from Advanced Query Builder, and store them in the Private Queries menu for future analysis, or to share with their organization.
-
Specify the query parameters
-
Click
Save Query -
Give your query a
Name -
Specify a
Descriptionto add more context -
Click
Save