Check domains, IPs, URLs, and file hashes against 500+ threat intelligence sources. Get instant risk scores, historical data, and detailed analysis.
Every lookup returns a comprehensive intelligence package — risk scoring, source breakdown, geolocation, MITRE mapping, and confidence metrics.
Risk Score
Categories
Geolocation
Blocklist Hits
Confidence
75%Risk Factors
MITRE ATT&CK Tactics
Composite 0-100 score weighted across threat feeds, scanner consensus, infrastructure, and behavioral context.
500+ threat sources aggregated by category: malware, phishing, abuse, proxy, and more — each with reliability weighting.
Tactics, techniques, related threat actor groups, and recommended mitigations from the MITRE framework.
Country, region, city, ISP, ASN, and autonomous system ownership at global scale with lat/lon precision.
First seen, last seen, and full detection history across all monitoring windows and source updates.
Multi-factor confidence: source agreement, source quality, VirusTotal consensus, and inter-provider alignment.
Comprehensive threat analysis for every attack surface
Start with 30 free API requests per month. No credit card required.
Q1 2026 ransomware revenue reporting points to a mature access market. Defenders need ransomware intelligence, domain monitoring, blocklists, and API enrichment before encryption begins.
AMOS and related macOS infostealers are turning social engineering into credential theft. File hash reputation, URL scanning, and domain intelligence help teams respond before stolen tokens spread.
BlueHammer coverage shows why endpoint patching, CISA KEV context, CVE Watch, and IOC enrichment have to work together when local privilege escalation becomes ransomware tradecraft.