The Dangerous websites Warning List will soon be five years old. Over this time it stopped millions of attempts to connect to malicious domains and has become our most effective tool in the fight against phishing websites.

Over a year ago we've started publishing the List using a new format. The second version allows to block malicious domains more precisely and solves the issue of integrators still blocking expired domains.

As of 1st of June, 2025 we will no longer offer downloads in the legacy format

The following URLs will no longer be updated and will instead return a HTTP 301 Moved Permanently redirect response to the corresponding new resources:

• https://hole.cert.pl/domains/domains.txt -> https://hole.cert.pl/domains/v2/domains.txt
• https://hole.cert.pl/domains/domains.csv -> https://hole.cert.pl/domains/v2/domains.csv
• https://hole.cert.pl/domains/domains.json -> https://hole.cert.pl/domains/v2/domains.json
• https://hole.cert.pl/domains/domains.xml -> https://hole.cert.pl/domains/v2/domains.xml
• https://hole.cert.pl/domains/domains_adblock.txt -> https://hole.cert.pl/domains/v2/domains_adblock.txt
• https://hole.cert.pl/domains/domains_hosts.txt -> https://hole.cert.pl/domains/v2/domains_hosts.txt
• https://hole.cert.pl/domains/domains_mikrotik.rsc -> https://hole.cert.pl/domains/v2/domains_mikrotik.rsc

The main changes between v1 and v2

• The data schema doesn't change – users correctly implementing the first version only need to update the download path from /domains.xyz to /v2/domains.xyz
• Version v2 includes automatic data retention – all lists include only data from the last 6 months. You have to make sure that your implementation only blocks domains that are currently listed.

The original article provides more information on the Dangerous websites Warning List.