Домен from where to buy bulletproof domain

[maersk]

incognet llc

 

[zinc]

If you need a BP domain/hosting then you do something wrong. As all such options are blacklisted by default on top IDS/Firewalls.
The only time you'll need a BP domain/hosting is when you'll do something on mass. And not care that the researchers will get your domain.

You need to use a trusted domain/hosting so your malicious traffic bypass as many reputation-based solutions as possible. After that figure out a way to block scanners/researchers (iptables)
Domain: buy "old" domains, like registered years ago. You can take them from: expireddomains.net. This will bypass reputation-based filters.
Hosting: setup a nginx reverse proxy in a trusted data center, such as the ones from bitlaunch.io (eg: digital ocean). The backend server you can host in your more trusted data center. Result: Reputation-based algorithms will see that your domain is hosted in a trusted data-center/country and will ignore it.
old-domain.com <> A record <> Digital Ocean <> nginx proxy <> actual-backend.

Try that and you'll see your success rate will rise.

This is a great post, covers all use cases.

Depending on what you're doing, open redirects can be extremely useful (for once) - I've also heard free TLS certificates are increasingly regarded with suspicion (and the issuing date considered).

He also explains how (with a little automation) you can construct a poor man's fast flux, and do these things for a fraction of the price.

Some systems are public by nature, the servers will be killed, the domains will be seized. If you manage things well perhaps you can last This is why I say cheap servers, because they are sacrificial.

 

[luxhost]

All registrars will be required to block the domain if they receive a complaint from ICANN.
I recommend using registrars that do not monitor or check the content of the domain until receiving such a complaint.
Registrars who use verification tool if your domain is malicious might block it without compliant.
When we receive report, we might provide our clients time to delete malicious content from the website, so that domain is not taken down without warning

 

[zinc]

Есть огромное множество оптимизаций, доступных даже слегка мотивированному злоумышленнику... поэтому мы их и не обсуждаем. Открытые перенаправления были бы такой же запретной темой, если бы они не были так распространены!