When you encounter a suspicious URL or domain in an alert, what steps do you take to analyze it? What tools and techniques help you determine if a domain is malicious?

Sample answer preview

Analyzing suspicious URLs and domains is a routine but critical task for SOC analysts. Attackers use malicious domains for phishing pages, malware delivery, command and control communication, and data exfiltration.