Page tree


  • Alexa

Alexa is a global pioneer in the world of analytical insight. Their vast experience means they have developed the most robust and accurate web analytics service. Search results from Alexa provide a ranking from the global Top 1,000,000 Sites list.

  • ActiveTrust

Active Trust is Infoblox’s flagship data collection. Queries are executed against all data within ActiveTrust and data provider subscriptions.

  • Current DNS (dns)

Search results from DNS Lookup provide all the available information about a given, hostname from DNS nameservers.

  • Global Custom Search (gcs)

Searches anti-virus analysis pages, malware analysis blogs and other related malware/RCE websites. Global Custom Search is a platform provided by Bing that allows web developers to feature specialized information in web searches, refine and categorize queries and create customized search engines.

  • Geolocation (geo)

Plots the identified coordinates on a map, providing city-level accuracy. Other information including ISP, city, region, latitude/longitude, and country are also included.

  • Google Safe Browsing (gsb)

Google service that enables applications to check URLs against Google’s constantly updated lists of suspected phishing, malware, and unwanted software pages.

  • iSIGHT

iSIGHT Partners is the leading provider of global cyber threat intelligence, delivering unparalleled insight into your cyber adversaries, their motives and methods. iSIGHT provides instant reporting on threat actors targeting organizations, plus related Indicators of Compromise (IOCs) to help prioritize relevant threats, speed detection of advanced attacks and bolster responses to minimize further risk.

  • Passive DNS (pdns)

Passive DNS is the historical DNS record for hostnames. When searching a hostname, Passive DNS will return all IPs that hostname has resolved to, and were caught by the PDNS sensors in the previous 12 months. When searching an IP, Passive DNS will return all hostnames that have pointed to that IP. Note: Not every DNS change is caught, so there will be missing information.

  • Reverse DNS

Performs a reverse DNS lookup of an IP address by searching domain name registry and registrar tables.

  • Reverse Whois (rwhois)

DomainTools’ Reverse Whois lookup API allows a lookup in Whois records that contain a string. This is typically used for identifying information like an email address or name. The results can reveal related, registered domains.

  • Secure Domain Foundation (sdf)

Secure Domain Foundation is a Canadian incorporated not-for-profit organization whose primary mission is to provide Domain Name Registrars, registries (ccTLD & gTLD), hosting providers, DNS operators, and other Internet infrastructure providers with the tools they need to combat abuse of their services and a forum for sharing intelligence on bad actors. This version of SDF’s API is designed specifically to assist domain registries, registrars, and hosting providers to easily obtain validation and reputation information on certain account or whois related data points.

  • Malware Analysis (malware_analysis)

Data collection of malicious content detected by aggregation of antivirus engines and website scanners.

  • Whois (whois)

DomainTools’ Whois lookup API provides the ownership record for a domain name or IP address with basic registration details, all in well-structured format that groups together important data.

  • No labels

This page has no comments.