This category will monitor any SSL certificates registered with one of 

Before that, we will apply fuzzy match algorithms in order to generate permutation on the domain you saved in 

. The objective is to find out whether anyone registered domains that are similar to yours, preventing 

The default Risk score for most SSL certificates registration found is 2. However, multiple factors enter in our Risk classification algorithm, possibly pushing the Risk score either way;

Factors leading to lower scores are whether Flare suspects the domain registered to belong to you, looking among other things, at the domain and TLD in the case of a subdomain registration. Various trustworthy cloud and hosting services automatically register domains that follow a specific pattern.

Factors leading to higher risk score include the registration authority, the similarity between domains and how many domains were registered at once.

Flare applies a wide range of fuzzy match algorithms and heuristics to identify possible impersonators. We look at things like homoglyphs, insertions, deletions, omissions, repetitions, transpositions, vowels swap and bitsquatting.

, Flare will spot the following look-alike domains (and many others):

This document explains how SSL certificate monitoring tracks certificates from specified authorities, using fuzzy match algorithms to prevent typosquatting and phishing. Factors such as suspected ownership, registration authority, domain similarity, and n

Leaked Credentials

Look-alike Domains

Emerging Sources

Flare

docs.flare.io

Welcome to Flare!

What We Are Working On

2024 Releases

2025 Releases

Get Started

Unresolved Events

Event Trends

Event Explorer

Identifier Trends

Dashboard

Respond to Leaked Credentials Events

Respond to Open Web Events

Respond to Look-alike Domains Events

Respond to Illicit Networks Events

Playbooks

GUIDES

Actions

Search in Existing Data

Understand Event Severity

Open Ports

Events

Network

Actor Intelligence

Forum Thread Intelligence

Alert Central

Configure Identifiers

Configure Identifiers - Advanced

Identifiers - Listing Subdomains

Email Alerts

Rate-limiting of identifier event feeds

Identifiers

Flare Executive and VIP Monitoring

Collection Overview

Telegram Channels

Named Breaches

Collection Data Categories

Collection

Global Search Quota

Global Search

Scheduled Reports

Reports Migration FAQ

Reports

Identity Profile

Identity Exposure Management

Use Cases

Credentials Browser

Intel

Conversation Explorer

Saved Queries

Threat Flow

Supply Chain Ransomware Exposure Monitoring

Takedown Services

Pre-Sales Tenants

IDENTIFIERS (cloned)

Team

Tenants

Roles & Permissions

Profile

Integrations Hub

SSO and Authentication

Policies

Untitled

Azure Sentinel Integration

Azure Sentinel Integration (Legacy)

Discord Integration

Jira Integration

Microsoft Entra ID

ServiceNow

Slack Integration

Splunk App Integration

Microsoft Teams Integration

Webhook Integration

Integrations

Illicit Networks

Source Code Secret Detection

Open Web

DATA SOURCES

Product Specifications

Fraudster Jargon

Data Fields

Queries

Event Date Fields

Asset Relations

REFERENCES

RESEARCH CENTER