Web3 Threat Tracker v2026.07.04
Daily release of Web3 threat intelligence data.
Lookup-feed assets for SIEM ingestion (CrowdStrike NG-SIEM / Splunk):
malicious_only.csv— all MALICIOUS-severity domains (the standard block/alert feed)high_confidence.csv— only entries corroborated by 2+ sources (confidence = HIGH, lowest false positives)all_domains.csv— full dataset; filter onseverity/confidencein-queryweb3_tracker.db— SQLite (indexed ondomain) for local enrichment lookups
domain is the first column in every CSV. See stats.json for the dataset summary.