Malicious Domain Data Feed

Access a continuously updated feed of flagged domains — ideal for DNS filtering, SIEMs, and network firewalls. Our comprehensive database is updated in real-time with the latest threat intelligence to keep your network secure.

Daily Updated Domain Feed

We provide ZIP files updated on a daily basis containing the latest malicious domain intelligence. Each file contains comprehensive threat data in JSON format for easy integration with your security systems.

You can download an example file here:

File Format

Each ZIP file contains a JSON array with domain objects. Here's the structure:

[
    {
        "category": "low_trust_casino",
        "domain": "example1.com"
    },
    {
        "category": "phishing",
        "domain": "example2.com"
    },    
    {
        "category": "susp_shop",
        "domain": "example3.com"
    },
    ... more domains
]

Category Types

Our threat intelligence includes the following categories:

safe - Safe
adult_content - Adult Content
adware_distributor - Adware Distributor
in_app_ads - In-App Ads
financial_scam - Financial Scam
malware_distributor - Distributes Malware or Unwanted File Download
cryptocurrency_scam - Cryptocurrency Scam
suspicious_dating_website - Suspicious Dating Website
phishing - Phishing
unwanted_application_distributor - Unwanted Application Distributor
scam_website - Scam Website
social_network - Social Network

torrent_distributor - Torrent Distributor
violence - Violence
suspicious_shop - Suspicious Shop
suspicious_website - Suspicious Website
fake_raffle_prizes - Fake Raffle Prizes
fake_online_hiring_scams - Fake Online Hiring Scams
fake_investment_website - Fake Investment/Earning Website
low_trust_online_casino - Low Trust Online Casino
browser_notification_spam - Browser Notification Spam
whitelist - WhiteList
unsettled_website - Unsettled Website
disinformation_propaganda - Disinformation/Propaganda
blockchain_cdn - BlockChain CDN

Integration

The JSON format makes it easy to integrate with various security tools:

Parse the JSON array and extract domains for DNS blocking
Filter by category to focus on specific threat types
Import into SIEM systems for threat correlation
Use with firewall rules and proxy configurations

Ready to get started?

Billed monthly

Billed annually

Basic

$49

$ _{per month}

Designed for small to medium enterprises requiring regular API access with standard support.

1500 API credits per month
Max 20 results per request
Access to domain, URL, and file check APIs
Email support
Standard response times within 24 hours

Standard

$149

$ _{per month}

Suited for businesses needing high-volume access and additional API capabilities, along with priority support.

5000 API credits per month
Max 30 results per request
Extended access to all primary APIs including domain, URL, and file checks
Email and ticket support
Access to beta features and early releases
Priority response time

Premium

$599

$ _{per month}

For large organizations requiring full-scale API integration with the highest level of support and customization.

20000 API credits per month
Max 50 results per request
Full access to all API capabilities, including exclusive premium features
Dedicated account manager and 24/7 premium support
Custom configuration and onboarding assistance
Access to in-depth analytics and usage reports

Need more?

If you would like to discuss custom arrangements, please do not hesitate to contact us. We are always ready to help you find the perfect solution that meets your needs.