[FEATURE REQUEST] Use different malware db

[ajinabraham]

          I realize this is an old (and closed) issue, but recently, I found something that could help.

There is an updated list of malware domains that can be found here: https://hole.cert.pl/domains/domains.txt. This list is updated 5 minutes after a domain is flagged as malicious, and according to cert.pl, each website submission will be verified by at least two human operators from the CERT Polska team before being added to the list. A JSON version is available here that contains the insertion date for each listed domain so we can check its accuracy and update status.

This list is smaller than the original list contained in MobSF (about 187K domains versus 363K domains from MDL), but since MDL no longer exists and the available list is outdated, this probably produces better results than continuing to use the old MDL list.

Originally posted by @ecarlotti in https://github.com/MobSF/Mobile-Security-Framework-MobSF/issues/1602#issuecomment-2003612889

[github-actions[bot]]

👋 @ajinabraham Issues is only for reporting a bug/feature request. For limited support, questions, and discussions, please join MobSF Slack channel Please include all the requested and relevant information when opening a bug report. Improper reports will be closed without any response.

[ajinabraham]

Looking at the list, it has a bias towards Poland based actors. We need something that's applicable worldwide.

[ajinabraham]

Maybe get a list from https://www.reddit.com/r/cybersecurity/comments/drk0zv/malicious_domain_database_list_testing/