Skip to content

Releases: elchacal801/web3-threat-tracker

Web3 Threat Tracker v2026.07.09

Choose a tag to compare

@github-actions github-actions released this 09 Jul 10:44

Daily release of Web3 threat intelligence data.

Lookup-feed assets for SIEM ingestion (CrowdStrike NG-SIEM / Splunk):

  • malicious_only.csv — all MALICIOUS-severity domains (the standard block/alert feed)
  • high_confidence.csv — only entries corroborated by 2+ sources (confidence = HIGH, lowest false positives)
  • all_domains.csv — full dataset; filter on severity/confidence in-query
  • web3_tracker.db — SQLite (indexed on domain) for local enrichment lookups

domain is the first column in every CSV. See stats.json for the dataset summary.

Web3 Threat Tracker v2026.07.08

Choose a tag to compare

@github-actions github-actions released this 08 Jul 09:43

Daily release of Web3 threat intelligence data.

Lookup-feed assets for SIEM ingestion (CrowdStrike NG-SIEM / Splunk):

  • malicious_only.csv — all MALICIOUS-severity domains (the standard block/alert feed)
  • high_confidence.csv — only entries corroborated by 2+ sources (confidence = HIGH, lowest false positives)
  • all_domains.csv — full dataset; filter on severity/confidence in-query
  • web3_tracker.db — SQLite (indexed on domain) for local enrichment lookups

domain is the first column in every CSV. See stats.json for the dataset summary.

Web3 Threat Tracker v2026.07.07

Choose a tag to compare

@github-actions github-actions released this 07 Jul 10:43

Daily release of Web3 threat intelligence data.

Lookup-feed assets for SIEM ingestion (CrowdStrike NG-SIEM / Splunk):

  • malicious_only.csv — all MALICIOUS-severity domains (the standard block/alert feed)
  • high_confidence.csv — only entries corroborated by 2+ sources (confidence = HIGH, lowest false positives)
  • all_domains.csv — full dataset; filter on severity/confidence in-query
  • web3_tracker.db — SQLite (indexed on domain) for local enrichment lookups

domain is the first column in every CSV. See stats.json for the dataset summary.

Web3 Threat Tracker v2026.07.06

Choose a tag to compare

@github-actions github-actions released this 06 Jul 11:46

Daily release of Web3 threat intelligence data.

Lookup-feed assets for SIEM ingestion (CrowdStrike NG-SIEM / Splunk):

  • malicious_only.csv — all MALICIOUS-severity domains (the standard block/alert feed)
  • high_confidence.csv — only entries corroborated by 2+ sources (confidence = HIGH, lowest false positives)
  • all_domains.csv — full dataset; filter on severity/confidence in-query
  • web3_tracker.db — SQLite (indexed on domain) for local enrichment lookups

domain is the first column in every CSV. See stats.json for the dataset summary.

Web3 Threat Tracker v2026.07.05

Choose a tag to compare

@github-actions github-actions released this 05 Jul 10:00

Daily release of Web3 threat intelligence data.

Lookup-feed assets for SIEM ingestion (CrowdStrike NG-SIEM / Splunk):

  • malicious_only.csv — all MALICIOUS-severity domains (the standard block/alert feed)
  • high_confidence.csv — only entries corroborated by 2+ sources (confidence = HIGH, lowest false positives)
  • all_domains.csv — full dataset; filter on severity/confidence in-query
  • web3_tracker.db — SQLite (indexed on domain) for local enrichment lookups

domain is the first column in every CSV. See stats.json for the dataset summary.

Web3 Threat Tracker v2026.07.04

Choose a tag to compare

@github-actions github-actions released this 04 Jul 09:41

Daily release of Web3 threat intelligence data.

Lookup-feed assets for SIEM ingestion (CrowdStrike NG-SIEM / Splunk):

  • malicious_only.csv — all MALICIOUS-severity domains (the standard block/alert feed)
  • high_confidence.csv — only entries corroborated by 2+ sources (confidence = HIGH, lowest false positives)
  • all_domains.csv — full dataset; filter on severity/confidence in-query
  • web3_tracker.db — SQLite (indexed on domain) for local enrichment lookups

domain is the first column in every CSV. See stats.json for the dataset summary.

Web3 Threat Tracker v2026.07.03

Choose a tag to compare

@github-actions github-actions released this 03 Jul 10:23

Daily release of Web3 threat intelligence data.

Lookup-feed assets for SIEM ingestion (CrowdStrike NG-SIEM / Splunk):

  • malicious_only.csv — all MALICIOUS-severity domains (the standard block/alert feed)
  • high_confidence.csv — only entries corroborated by 2+ sources (confidence = HIGH, lowest false positives)
  • all_domains.csv — full dataset; filter on severity/confidence in-query
  • web3_tracker.db — SQLite (indexed on domain) for local enrichment lookups

domain is the first column in every CSV. See stats.json for the dataset summary.

Web3 Threat Tracker v2026.07.02

Choose a tag to compare

@github-actions github-actions released this 02 Jul 10:27

Daily release of Web3 threat intelligence data.

Lookup-feed assets for SIEM ingestion (CrowdStrike NG-SIEM / Splunk):

  • malicious_only.csv — all MALICIOUS-severity domains (the standard block/alert feed)
  • high_confidence.csv — only entries corroborated by 2+ sources (confidence = HIGH, lowest false positives)
  • all_domains.csv — full dataset; filter on severity/confidence in-query
  • web3_tracker.db — SQLite (indexed on domain) for local enrichment lookups

domain is the first column in every CSV. See stats.json for the dataset summary.

Web3 Threat Tracker v2026.07.01

Choose a tag to compare

@github-actions github-actions released this 01 Jul 11:00

Daily release of Web3 threat intelligence data.

Lookup-feed assets for SIEM ingestion (CrowdStrike NG-SIEM / Splunk):

  • malicious_only.csv — all MALICIOUS-severity domains (the standard block/alert feed)
  • high_confidence.csv — only entries corroborated by 2+ sources (confidence = HIGH, lowest false positives)
  • all_domains.csv — full dataset; filter on severity/confidence in-query
  • web3_tracker.db — SQLite (indexed on domain) for local enrichment lookups

domain is the first column in every CSV. See stats.json for the dataset summary.

Web3 Threat Tracker v2026.06.30

Choose a tag to compare

@github-actions github-actions released this 30 Jun 10:49

Daily release of Web3 threat intelligence data.

Lookup-feed assets for SIEM ingestion (CrowdStrike NG-SIEM / Splunk):

  • malicious_only.csv — all MALICIOUS-severity domains (the standard block/alert feed)
  • high_confidence.csv — only entries corroborated by 2+ sources (confidence = HIGH, lowest false positives)
  • all_domains.csv — full dataset; filter on severity/confidence in-query
  • web3_tracker.db — SQLite (indexed on domain) for local enrichment lookups

domain is the first column in every CSV. See stats.json for the dataset summary.