Blog & How To Guides | WhoisXML API
Products APIs Data Feeds Web Tools Domain Research & Monitoring Enterprise Packages
WHOIS / WHOIS History
WHOIS / WHOIS History

Provide current and historical ownership information on domains / IPs. Identify all connections between domains, registrants, registrars, and DNS servers.

DNS / DNS History
DNS / DNS History

Look into all current and historical DNS / IP connections between domains and A, MX, NS, and other records. Monitor suspicious changes to DNS records.

IP Geolocation / IP Netblocks
IP Geolocation / IP Netblocks

Get detailed context on an IP address, including its user’s geolocation, time zone, connected domains, connection type, IP range, ASN, and other network ownership details.

Domain Research Suite (DRS)
Domain Research Suite (DRS)

Access our web-based solution to dig into and monitor all domain events of interest.

Domain Research Suite (DRS)
Domain Research Suite (DRS)

Get access to a web-based enterprise-grade solution to search and monitor domain registrations and ownership details for branded terms, fuzzy matches, registrants of interest, and more.

Research
Monitoring
White-Label
Enterprise API Packages
Enterprise API Packages

Our complete set of domain, IP, and DNS intelligence available via API calls as an annual subscription with predictable pricing.

Security Intelligence (SI) Suite
Security Intelligence (SI) Suite

Offers complete access to WHOIS, IP, DNS, and subdomain data for product enrichment, threat hunting and more.

Premium API Services
Premium API Services

Enjoy priority data access with our premium API services topped with extra perks including dedicated team support, enterprise-grade infrastructure, and SLAs for full scalability and high performance.

×
Contact Us



WhoisXML API Blog

follow us in feedly
All posts Product launches and updates Partnerships Domain activity highlights CyberSec Navigator For developers Product blogs
7 Slightly Unexpected Use Cases of Bulk WHOIS

7 Slightly Unexpected Use Cases of Bulk WHOIS

The Internet has created plenty of opportunities to launch websites and run ventures, yet achieving transparency and accountability online is more complicated than ever in today’s digital landscape. Pretty much anyone anywhere in the world can buy any domain name — leading to situations where identities get blurred and giving scammers plenty of opportunities to plan and execute multiple types of cyber attacks.

Fortunately, publicly available information such as WHOIS records includes details of domain owners and registration activities to help businesses and entrepreneurs find out who is actually on the other end of the web.

Continue reading
Discover Which IP Range a Suspicious IP Belongs to by Using IP Netblocks WHOIS Data Feed – and Keep Your Network Safe

Discover Which IP Range a Suspicious IP Belongs to by Using IP Netblocks WHOIS Data Feed – and Keep Your Network Safe

In order to keep your site and network secure from malicious attacks, spam, fraud and hackers, it’s important to identify and then promptly block any suspicious IPs before they can make any real and lasting damage on your network. Cyber attackers, however, are very skilled at masking their IPs (not to mention that they are extremely persistent and do not give up easily) and finding out where they come from can be difficult – but far from impossible.

That is why we created this handy tool which will help you discover which IP range a particular IP belongs to.

Continue reading
How To Map IP Ranges To Their Organization?

How To Map IP Ranges To Their Organization?

For cybersecurity analyst to discover any impending threats, the starting point is usually by checking the attacker's infrastructure. Whois records provides the essential base for most investigations. But attackers can easily stay hidden with domain Whois protection services thereby preventing the analyst from accessing the much-needed Registrant information. In such a scenario analyst can circumvent their research by finding the IP address of the attacker. IP data can offer analysts with various touch points of these bad actors. Understanding the importance of IP data for threat intelligence, WhoisXmlApi has already been providing various IP products and services like domain IP database, IP Geolocation, Reverse IP, covering 99.5% IP addresses in use now. Taking that a step further, we are now excited about our latest endeavor in the IP space with IP Netblocks Whois Datafeeds! This database will equip you with all the information with regards to all the currently registered IP blocks (ranges) with details of the ISP or hosting provider that uses that block for its customers.

Continue reading

Protect Your Website with Reverse DNS Lookup

Your mobile phone rings. Caller ID does not recognize the caller. But the area code and first digits of the phone number are the same as yours. You look up the call in a reverse phone number website that displays who the caller is and where they are located. This sort of reverse-lookup will save you time and headaches, and will prepare you for the next time a number like this contacts you.

Continue reading
The Most Comprehensive Threat Intelligence API that You’ll Ever Need

The Most Comprehensive Threat Intelligence API that You’ll Ever Need

If your website has ever been compromised by malware infections, phishing attempts, external attacks from infected hosts or in some other way, you already know why it is important to have a strong threat intelligence platform and how important it is.

We’ve made sure to get rid of the guess work and have accumulated over a decade’s worth of data to give you the most comprehensive and secure threat intelligence API that you’ll ever need.

Continue reading
Beam me up to WhoisXmlApi Enterprise, Scotty!

Beam me up to WhoisXmlApi Enterprise, Scotty!

Just the way the USS Enterprise made Space exploration possible in the sci-fi series Star Trek, we at WhoisXmlApi are excited to provide a vessel in the vast space of domain investigation, with our latest endeavour, Enterprise Packages: to help explore new actors on the Internet, to seek out and curb cybercrime, to boldly go where no man has gone before.

Continue reading

How to Perform a GeoIP Lookup in Flask

If you're building a website (or API) using Flask, it's often useful to know where your visitors are coming from: the US, the EU, someplace else? The process of locating a web user is typically referred to IP geolocation, and unfortunately, it isn't simple.

The reason it isn't easy to get IP geolocation data is that there is no standard mapping of IPs -> location data. Most companies get this data by purchasing it from GeoIP aggregators that piece together lots of different bits of information to build an accurate database of IP geolocation data.

Continue reading

How to Perform a GeoIP Lookup in Express.js

If you're building a website (or API) using Express.js, it's often useful to know where your visitors are coming from: the US, the EU, someplace else? The process of locating a web user is typically referred to IP geolocation, and unfortunately, it isn't simple.

The reason it isn't easy to get IP geolocation data is that there is no standard mapping of IPs -> location data. Most companies get this data by purchasing it from GeoIP aggregators that piece together lots of different bits of information to build an accurate database of IP geolocation data.

Continue reading
follow us in feedly
Try our WhoisXML API for free
Get started