Yes. You can run free threat intelligence reports on IPs, domains, URLs, and file hashes without a credit card. Registered users get 30 API calls per month on the free tier; the web report tool is available for ad-hoc lookups.
The report covers IP and domain reputation, WHOIS, DNS records, geolocation, ASN context, SSL certificates, associated CVEs, ransomware signals, Safe Browsing status, and AI-assisted analysis — aggregated from 500+ threat intelligence sources.
isMalicious cross-correlates 500+ professional and community sources with confidence scoring and source attribution. Conflicting signals are surfaced separately rather than producing a single opaque verdict, so analysts can tune thresholds for their environment.
Lookups are processed to generate your report. We do not publish individual query URLs for indexing, and authenticated users can review their lookup history in the dashboard. See our privacy policy for full data handling details.
Yes. The same reputation engine powers the REST API, bulk endpoints, streaming feeds, and webhooks documented at /api-docs. Start free with 30 calls/month and scale to Pro or Enterprise for higher volume.
Unlike single-purpose tools, isMalicious correlates IP, domain, URL, hash, CVE, and ransomware context in one report with sub-second response times. Compare alternatives at /vs or read detailed comparisons on our blog.