Civetta's protection combines public threat-intelligence feeds operated by independent security organizations with the proprietary indicators we derive. We're grateful to the following projects and acknowledge their licenses below.
- URLhaus & ThreatFox (abuse.ch) — malware distribution + indicators of compromise
- FireHOL Level 1 — IP / CIDR blocklist
- Phishing.Database — active phishing domains
- PhishTank (Cisco Talos) — community-verified phishing URLs
- OISD — aggregated blocklist, licensed under CC BY 4.0
- Tranco — research top-sites list (popularity floor)
Where required by license or terms of service, attribution appears here in addition to any in-app or in-product notice. If you maintain one of these projects and would like the attribution wording adjusted, please reach us at legal@civetta.app.