Request a Demo

Bambenek Consulting

Bambenek Consulting is a cybersecurity investigations and intelligence consulting firm focusing on tackling major criminal threats. Services include the Well Fed Intelligence feeds used by thousands of organizations all over the world. In addition to intelligence services, Bambenek Consulting provides general security consulting, compliance audits, expert witness services, and investigations and intelligence work on cybercrime threats. Professional training is also offered for on-site training of organizations looking to level up their in-house security ability.

Specialties

Integrations

Bambenek Consulting

Bambenek Consulting is a leading cybersecurity threat intelligence and data science firm led by industry veteran John Bambenek. Services include the Well-Fed Intelligence feeds used by thousands of organizations all over the world.

Using our novel techniques, we surveil attackers to see where they actually live so you have the latest information to feed into your security tools or SIEM to protect yourself. With Well Fed, you can be sure your security tools are fed with the latest information they need to keep you safe.

This system provides one of the largest repositories of curated threat intelligence that is publicly available. Approximately one million malicious domains are monitored every hour and are curated and whitelisted to ensure that you have reliable information you need to protect yourself from cybercriminals. With Well Fed, your security tools are more effective.

We offer both end-user organization licenses and licenses to security companies and MSSPs. Reach out today to learn how Well Fed can protect your digital assets today.

Intelligence-services offered via this integration:

  • High-Confidence C2 IP Feed - Master Feed of known, active, and non-sinkholed C&Cs IP addresses (high-confidence only).
  • High-Confidence C2 Domain Feed - Master Feed of known, active, and non-sinkholed C&Cs domain names (high-confidence only).
  • High-Confidence DGA Domain Feed - Domain feed of known DGA domains from -2 to +3 days (high-confidence only).
  • Sinkhole Feed - Manually curated list of IPs known to be sinkholes.
  • Maldomainml Malware Feed - Feed of current malware domains.
  • Maldomainml Phishing Feed - Feed of current phishing domains.
Keep Reading

Looking for an
integration not shown?