
Third-party risk monitoring with domain and IP intelligence
NormShield uses our comprehensive sets of domain, subdomain, and IP intelligence sources to conduct thorough risk evaluations and deliver results through intuitive scorecards.
Provide current and historical ownership information on domains / IPs. Identify all connections between domains, registrants, registrars, and DNS servers.
Look into all current and historical DNS / IP connections between domains and A, MX, NS, and other records. Monitor suspicious changes to DNS records.
Get detailed context on an IP address, including its user’s geolocation, time zone, connected domains, connection type, IP range, ASN, and other network ownership details.
Access our web-based solution to dig into and monitor all domain events of interest.
Get access to a web-based enterprise-grade solution to search and monitor domain registrations and ownership details for branded terms, fuzzy matches, registrants of interest, and more.
Our complete set of domain, IP, and DNS intelligence available via API calls as an annual subscription with predictable pricing.
Downloadable domain, IP, and DNS datasets for efficient and unrestricted access to all of our intelligence sources within your network perimeter.
Access to our domain and threat intelligence tools in combo with package discounts for enterprise and government customers.
Packages designed to augment commercial and in-house security platforms, support managed security services, and facilitate investigations.
Enjoy priority data access with our premium API services topped with extra perks including dedicated team support, enterprise-grade infrastructure, and SLAs for full scalability and high performance.
Carry a complete threat intelligence analysis for a given domain or IP address and get access to a report covering 120+ parameters including IP resolutions, website analysis, SSL vulnerabilities, malware detection, domain ownership, mail servers, name servers, and more.
Gather threat intelligence via API calls covering Domain’s Infrastructure analysis, SSL Certificates Chain, SSL Configuration Analysis, Domain Malware Check, Connected Domains, and Domain Reputation Scoring.
Bolster enterprise security with our feeds covering Typosquatting domains, Disposable domains, Phishing URLs, Domain & IP reputation, Malicious URLs, Botnet C&C, and DDoS URLs.
Cyber attack surfaces are growing exponentially, fueled by millions of domain, subdomain, and IP/DNS events recorded every day.
Our Attack Surface Management (ASM) Solutions enable security platform architects, managed security service providers (MSSPs), and security operations centers (SOCs) to better scope, oversee, and monitor their web assets and connected footprints.
Use our cyber threat intelligence sources to identify known and unknown attack vectors and entry points, ease defensive asset monitoring, and proactively reduce your attack surface.
Contact us at
All-in-one domain and IP intelligence database package with unlimited access to WHOIS History API.
A selection of tools and platforms for domain research and monitoring to obtain complete lists of threat-connected domains and IP addresses.
A wide range of APIs with access to comprehensive intelligence from WhoisXML API’s enterprise-grade IT infrastructure that is ready for quick integration.
Extensive domain, IP, and DNS databases that are easily downloadable, formatted for immediate correlation, and come with predictable pricing options.
Find the best way to enhance your attack surface management capabilities using our wide array of APIs, data feeds, and web-based solutions.
Our cyber attack surface solution packages allow you to scrutinize every domain, subdomain, IP address, and other potential hidden attack vectors in your and third parties’ networks.
Scouring the entire Web on your own requires a lot of time and effort, not to mention data mining expertise. We have done all that already so you can focus on attack surface reduction.
Our domain, IP, DNS, and threat intelligence databases get regular refreshes, so you have the latest and most relevant data at your fingertips.
NormShield uses our comprehensive sets of domain, subdomain, and IP intelligence sources to conduct thorough risk evaluations and deliver results through intuitive scorecards.
IBM’s QRadar collects DNS transactions and correlates them with WHOIS data to support fraud prevention by identifying risky domains and IP addresses.
We are here to listen. For a quick response, please select your request type or check our Contact us page for more information. By submitting a request, you agree to our Terms of Service and Privacy Policy.
WhoisXML API uses cookies to provide you with the best user experience on our website. They also help us understand how our site is being used. Find out more here. By continuing to use our site you consent to the use of cookies.