Watchman is a security tool that watches domains and fqdns. You can read more about it here: https://docs.google.com/presentation/d/10TtlZO01WfJo9raF-ShS06m5bak1NSG1/edit#slide=id.g324938c8159_1_85
- git clone https://github.com/mwollenweber/Watchman.git
- cd Watchman
- cp example-config.rc config.rc
- nano config.rc
- sudo ./install.sh
- http://localhost:8000/admin/Watchman/search/add/ I recommend adding the domain - (minus the) tld as a substring match and the domain+tld as str distance. So for insomniac.tech I monitor for the substring 'insomniac'
http://localhost:8000/admin/Watchman/alertconfig/
- ./daily-run.sh
Update a specific TLD. For Example, update .com:
- python manage.py update_zone com
- Browse to http://localhost:8000/hits/
