XARF
The industry standard for sharing network abuse reports and taking crucial measures to promptly alert owners to stop cyber attacks and remove illegal content.
What is XARF?
Initially started as an open, community-driven effort, XARF is now the industry standard for sharing network abuse reports. Other than ARF, XARF is independent of the underlying transport medium as it’s just a simple JSON document that can be used in multiple channels.
When to use XARF?
XARF can be used to report different sorts of abuse, like, spam, phishing attacks, hosted malware, illegal content, copyright issues, DDOS attacks and much more.
How to start with XARF?
Utilize XARF for effective abuse reporting, ensuring each report meets our schema standards before resolution and confirmation with the reporter. For a deeper understanding of the XARF protocol, our detailed documentation is readily available.
About XARF
Learn about the eXtended Abuse Reporting Format (xarf) for reporting abuse to Network and DNS Operations
XARF is a community effort. Be part of it!
How can I participate in XARF?
- Start using XARF
- Join our GitHub community
- Propose new threat types
- Discuss proposals
FAQ
What abuse types can be reported via XARF?
All supported abuse types can be found in the samples directory on GitHub.
What is the difference between ARF and XARF?
While ARF is only meant to report spam via email, XARF is independent of the underlying transport as it’s just a simple JSON document that you can be used in multiple channels.
XARF is more versatile as you can also build APIs and don’t need to use email/SMTP as the underlying tech.
How can I integrate XARF into my current abuse management settings?
XARF can already be used to report different abuse events into your own Abuse Management Platform like your AbuseHQ instance (internal reporting).
In future, Abusix will offer a central reporting service within our Abusix Portal which will send reports automatically to the correct recipient.
Who can report abuse via XARF?
Everyone, but usually, this will be users who automate the generation and sending of the report. In future, everyone who experiences abuse should be able to report abuse through our Abusix Portal, where an XARF report will be generated and send to the correct recipients.
Can XARF detect abuse?
No, XARF does not detect abuse. You have to detect abuse within your network, gather evidence, and then use a XARF to package it up and finally send it to the correct recipient.
Where can I request new report types?
If you want to participate in XARF, you are more than welcome to. You can request new report types here.
join the community
How to make the most of XARF
With our abuse management platform AbuseHQ, you’ll be able to level up your internal abuse report handling in an automated way. Let’s talk to our team, to see how we can help you ramp it up!