Quad9 will integrate the HaGeZi Threat Intelligence Feeds (TIF) lists

Awesome, great blocklists and will benefit plenty of folks. Usually my go-to although currently trying the built-in UniFi lists and they’re not as good.
 
Can't grumble at more feeds being added to Quad9, some of the more recent ones added do seem to be keen on blocking genuine sites from time to time
 
Last edited:
Still have a soft spot for Quad9 from the old IBM/X-Force days, good to see they are adding new TI sources.
 
lmfy2k said:
Great news

github.com

[Announcement]: Non-profit partnership with Quad9.net · Issue #7184 · hagezi/dns-blocklists

A new non-profit partnership is forming between my DNS blocklist project and Quad9.net. Quad9 will integrate the HaGeZi Threat Intelligence Feeds (TIF) list across their DNS servers to further enha...
github.com github.com
Click to expand...
Taking a look thanks

Code: 
# Last modified: 01 Sep 2025 18:40 UTC
# Version: 2025.0901.1840.06
# Syntax: Hosts (including possible subdomains)
# Number of entries: 691626

ip/dns/adlist/print
Flags: X - disabled
 0   url="https://raw.githubusercontent.com/hagezi/dns-blocklists/main/hosts/pro.txt" match-count=53988
     name-count=414704

 1   url="https://raw.githubusercontent.com/hagezi/dns-blocklists/main/hosts/tif.txt" match-count=0
     name-count=691626
 
ChrisD. said:
Ah, wasn’t aware. Thanks.
Click to expand...
Chris, if you don't care about local granular control you can check out the free tier from ControlD (Windscribe's DNS company). They allow you select a blocklist (the Hagezi range, OISD, 1Hosts etc) and use their DNS with that blocklist for free. Hagezi Pro or Pro Plus include a large subsection of TIF already, meaning you'd get a decent, off the shelf ads+TIF coverage with good response time. Their CDN is fairly decent (I get 2ms to them), and they have DoH/DoT/DoQ available. Alternatively, you can select multiple of their own curated lists (eg ads, malware and phishing) and use those at the same time in a single endpoint, free of charge. Worth considering if that's all that matters to you.

ETA: I have a lot of time for Quad9/PCH, they're good people. I know a couple of the netops/engineers and they care a lot about fast DNS and online safety.
 
Last edited:
Rainmaker said:
Chris, if you don't care about local granular control you can check out the free tier from ControlD (Windscribe's DNS company). They allow you select a blocklist (the Hagezi range, OISD, 1Hosts etc) and use their DNS with that blocklist for free. Hagezi Pro or Pro Plus include a large subsection of TIF already, meaning you'd get a decent, off the shelf ads+TIF coverage with good response time. Their CDN is fairly decent (I get 2ms to them), and they have DoH/DoT/DoQ available. Alternatively, you can select multiple of their own curated lists (eg ads, malware and phishing) and use those at the same time in a single endpoint, free of charge. Worth considering if that's all that matters to you.

ETA: I have a lot of time for Quad9/PCH, they're good people. I know a couple of the netops/engineers and they care a lot about fast DNS and online safety.
Click to expand...
Thanks mate, wasn't aware of this, and I see there's direct support in UniFi for this also. Will have a play around at some point.
 
ChrisD. said:
Thanks mate, wasn't aware of this, and I see there's direct support in UniFi for this also. Will have a play around at some point.
Click to expand...
Happy to help. FWIW ControlD's malware list outpaced even Quad9 (themselves excellent), and left Cloudflare's malware DNS in the dust. It really is excellent.
 
You must log in or register to reply here.
Back
Top Bottom