Blog & How To Guides | WhoisXML API
Products APIs Data Feeds Web Tools Domain Research & Monitoring Enterprise Packages Cyber Threat Intelligence Services
WHOIS / WHOIS History
WHOIS / WHOIS History

Provide current and historical ownership information on domains / IPs. Identify all connections between domains, registrants, registrars, and DNS servers.

DNS / DNS History
DNS / DNS History

Look into all current and historical DNS / IP connections between domains and A, MX, NS, and other records. Monitor suspicious changes to DNS records.

IP Geolocation / IP Netblocks
IP Geolocation / IP Netblocks

Get detailed context on an IP address, including its user’s geolocation, time zone, connected domains, connection type, IP range, ASN, and other network ownership details.

Domain Research Suite (DRS)
Domain Research Suite (DRS)

Access our web-based solution to dig into and monitor all domain events of interest.

Domain Research Suite (DRS)
Domain Research Suite (DRS)

Get access to a web-based enterprise-grade solution to search and monitor domain registrations and ownership details for branded terms, fuzzy matches, registrants of interest, and more.

Research
Monitoring
White-Label
Enterprise API Packages
Enterprise API Packages

Our complete set of domain, IP, and DNS intelligence available via API calls as an annual subscription with predictable pricing.

Security Intelligence (SI) Suite
Security Intelligence (SI) Suite

Offers complete access to WHOIS, IP, DNS, and subdomain data for product enrichment, threat hunting and more.

Premium API Services
Premium API Services

Enjoy priority data access with our premium API services topped with extra perks including dedicated team support, enterprise-grade infrastructure, and SLAs for full scalability and high performance.

Threat Intelligence Analysis
Threat Intelligence Analysis

Carry a complete threat intelligence analysis for a given domain or IP address and get access to a report covering 120+ parameters including IP resolutions, website analysis, SSL vulnerabilities, malware detection, domain ownership, mail servers, name servers, and more.

Threat Intelligence APIs
Threat Intelligence APIs

Gather threat intelligence via API calls covering Domain’s Infrastructure analysis, SSL Certificates Chain, SSL Configuration Analysis, Domain Malware Check, Connected Domains, and Domain Reputation Scoring.

Threat Intelligence Data Feeds
Threat Intelligence Data Feeds

Bolster enterprise security with our feeds covering Typosquatting domains, Disposable domains, Phishing URLs, Domain & IP reputation, Malicious URLs, Botnet C&C, and DDoS URLs.

Custom development

We offer comprehensive services for the integration of our data – from consultations to the precise definition of the basic needs of the business to increase the work efficiency.

Registrar WHOIS Services

Set up and manage public WHOIS servers for your business. Our WHOIS parsing system is a utility that collects extensive information about any given domain by sending series of DNS and WHOIS queries. The report is generated in raw as well as in parsed format.

Support services

Regardless of whether you are a startup, a small business or a global one, our team is always ready to help you. Enterprises operating on a scale can also choose special premium support management with high priority 24/7 email and telephone responses and other professional services.

Internet Statistics Reports

Get customized reports on TLDs covering datasets falling under domain name, WHOIS and DNS category.

×
Contact Us
Open dashboard Pricing Blog

Domain Research Suite Blog & How To Guides

Staying One Step Ahead of BEC Scams: A DIY DRS Guide to Threat Discovery

Business email compromise (BEC) scams cost organizations billions of dollars annually, making it a lucrative business for threat actors. BEC campaigns commonly spoof target companies and reputable email and electronic document service providers.

In this edition of our DIY investigation guide, we will demonstrate how companies and their security teams can detect potential BEC scam vehicles in the DNS using the Domain Research Suite (DRS) search and monitoring tools.

Continue reading

Investigating EHR Software Impersonation: A DIY DRS Guide to Threat Discovery

Several ransomware families have been seen targeting healthcare organizations in the past few years, adding to the challenges faced by the healthcare sector. Phishing is a favored initial access vector, where threat actors commonly utilize domain names. This edition of our DIY investigation guide will demonstrate how healthcare security teams and organizations can retrieve and monitor cybersquatting domains using Domain Research Suite (DRS) search and monitoring tools.

Continue reading

How to Trace a Privately Registered Domain’s Owner by Using a WHOIS History Lookup Tool

With a myriad of free readily available tools online, it’s not so difficult to find out if someone else already owns a domain you’re eyeing or if that domain is available for purchase or registration. But that’s where most tools stop. Sometimes, more details, such as a domain’s ownership history, including current and past registrants’ names and contact details, are hidden since most domain owners opt for privacy protection.

Continue reading

ChatGPT-Themed Phishing? Here’s a DIY DRS Guide to IoC Expansion and Threat Discovery

Despite being newly launched, ChatGPT has taken the world by storm. The business community is generally thrilled at what the AI chatbot can do, and threat actors are riding the wave. Phishers have been spoofing ChatGPT to lure people into handing over their credit card information and other sensitive data.

This edition of our DIY investigation guide will demonstrate how organizations can lessen the risks ChatGPT-themed threats pose using different Domain Research Suite (DRS) search and monitoring tools.

Continue reading

How to Retrieve Domain WHOIS History Data After Redaction

WHOIS information is indispensable for any cybersecurity researcher. It is an essential resource for tracking down registration owners for a variety of reasons that range from settling trademark and cybersquatting disputes to configuring websites. With WHOIS records, a security analyst or website administrator can quickly get in touch with a registrant owner to resolve or file a dispute, transfer a domain with ease, or set up a valid Secure Sockets Layer (SSL) certificate.

Continue reading

Exploring a Zoom-Targeted Campaign: A DIY Domain Research Suite (DRS) Guide to Threat Investigation

Popular software products and applications are often prime targets of cyber attacks—Zoom being one of them. With about 300 million users, Zoom has been repeatedly targeted by malware distribution campaigns, phishing attacks, and other threats. This edition of our DIY investigation guide will look into one of the most recent Zoom attacks, where malicious actors distributed IceID malware through the video communication platform. Our demonstration used different Domain Research Suite (DRS) search and monitoring tools.

Continue reading

Chasing Ducktail Info Stealer: A DIY Domain Research Suite (DRS) Guide to Threat Hunting

An info stealer dubbed “Ducktail” was observed targeting Facebook business accounts, particularly those using Meta’s ad platform. This edition of our DIY investigation guide will demonstrate how to investigate and build on the Ducktail IoCs for more proactive threat hunting and cybersecurity defense using different Domain Research Suite (DRS) search and monitoring tools.

Continue reading

How to Conduct Regulatory Due Diligence with Domain Intelligence: DIY Domain Research Suite (DRS) Guide

Businesses worldwide must follow certain regulations typically defined by different government agencies and international organizations. Otherwise, they may face legal issues and notably be levied with monetary fines.

DNS intelligence can help businesses conduct regulatory due diligence through domain research and monitoring techniques. How? We’ll take you through the process using the Domain Research Suite (DRS) and information provided by the Office of Foreign Assets Control (OFAC), so you can also perform the same screening for your company.

Continue reading

Unmasking Fraudsters—DIY Domain Research Suite (DRS) Guide

Posing as legitimate customer-facing organizations is a significant contributor to the success of fraudulent campaigns.  In this edition of our DIY investigation guides, we will take you through the process of investigating possible vehicles for fraud targeting the financial sector using different Domain Research Suite (DRS) search and monitoring tools.

Continue reading

BazarCall IoC Expansion—DIY Domain Research Suite (DRS) Guide

We took a deep dive into published indicators of compromise (IoCs) for a recently upgraded BazarCall campaign, leading us to more than 7,000 possible vehicles for similar callback phishing attacks.

We’ll take you through the IoC expansion process using various domain search and monitoring tools within the Domain Research Suite (DRS), so you can also perform a similar threat expansion on your own. The IoCs used as examples in this post were taken from this report.

Continue reading
Registrant Monitor Web Tool Tutorial

Registrant Monitor Web Tool Tutorial

This tool allows you to monitor domain registrations, updates, renewals or expirations made by registrants according to search criteria.

Continue reading
Reverse WHOIS Search Web Tool Tutorial

Reverse WHOIS Search Web Tool Tutorial

Reverse WHOIS Search allows you to obtain a list of domains containing a specific search term (registrant's name, email address, phone number) in their current or historical WHOIS records. This tutorial teaches you:

Continue reading

Track Down a Serial Counterfeiter—DIY Domain Research Suite (DRS) Guide

We investigated 360+ cybersquatting domains targeting Gucci added in the second half of the year (1 July–10 October 2022), leading us to an active counterfeiter targeting multiple fashion brands.

We’ll take you through the process using a variety of domain search and monitoring tools within the Domain Research Suite (DRS), so you can also do it for your brand.

Continue reading
WHOIS History Search Web Tool Tutorial

WHOIS History Search Web Tool Tutorial

WHOIS History Search allows you to view the ownership history of a domain. Here’s a tutorial on using the tool.

Continue reading
Brand Monitor Web Tool Tutorial

Brand Monitor Web Tool Tutorial

Brand Monitor allows you to track any keywords associated with your brand, trademark, or product. It tracks newly registered/modified and also recently expired domains containing all the Include terms and none of the Exclude terms in their domain name.

Continue reading
Reverse DNS Search Web Tool Tutorial

Reverse DNS Search Web Tool Tutorial

Reverse DNS Search allows you to retrieve domain name properties connected by DNS records. For instance, you can find web properties all hosted on a given IP address or using the same nameserver and mail server.

Continue reading
WHOIS Search Web Tool Tutorial

WHOIS Search Web Tool Tutorial

WHOIS Search allows you to retrieve a given domain name’s ownership, administrative, and technical information, among other details. From there, you can verify the legitimacy of a domain or pivot off certain WHOIS records to uncover current and historical connections. We’ll demonstrate how you can use WHOIS Search below.

Continue reading
Domain Availability Check Web Tool Tutorial

Domain Availability Check Web Tool Tutorial

Domain Availability Check allows you to verify the availability of a domain for registration. All you have to do is type the domain name into the search field and click Check.

Continue reading
Domain Monitor Web Tool Tutorial

Domain Monitor Web Tool Tutorial

Domain Monitor allows you to monitor changes in the selected domain WHOIS records and track both existing and not yet registered domains.

Continue reading
Domains & Subdomains Discovery Web Tool Tutorial

Domains & Subdomains Discovery Web Tool Tutorial

Domains & Subdomains Discovery Lookup allows you to identify all domains and subdomains that contain all the Include terms and none of the Exclude terms. You can discover domains only, subdomains only, or both. Also, you can specify where the search term should be placed in the domain name: start with, end with, contains, contains the word, to narrow down the results according to your needs.

Continue reading

The Domain Research Suite (DRS) Guide for Journalistic and Media Research

As an aggregator of WHOIS, DNS, and IP data, WhoisXML API can help back up journalistic investigations with verifiable online facts about domains and websites. Researchers and media professionals can use our 9-in-1 hosted Domain Research Suite (DRS) platform to investigate suspicious domains, detect domain registration trends, keep track of the government’s or private sector’s actions towards errant websites, and more.

Continue reading
13 Ways to Increase Brand Reputation and Protect It

13 Ways to Increase Brand Reputation and Protect It

When talking about brand reputation, one of the first things that come to mind is reviews. What are customers saying about your product or service? While that is true, there is more to a brand’s reputation than racking up positive reviews. We delved deeper into brand reputation in this post and provided some actionable tips and valuable tools to manage it effectively.

Continue reading

The Ultimate Guide to Branding in 2021

If you run a business, there's never been a better time to stand out from the crowd. Still, to make sure you're at the forefront of your industry, you'll need to learn how to take a brand from concept through to execution. This guide provides the latest information you need to get your company noticed and create an identity that lasts.

Continue reading

DRS Video Tutorial #1 — A Brief Overview

Check out this explanatory video looking at a series of examples and DRS queries for security and other purposes.

Continue reading
Reverse WHOIS in action: find all domains or websites of a company, and more

Reverse WHOIS in action: find all domains or websites of a company, and more

See Reverse WHOIS Search in action by searching for all the domains a company owns or controls. We will use the web-based Reverse WHOIS Search tool. An alternative would be to use Reverse WHOIS API, a RESTful solution that has the same capabilities.

We picked a popular brand, the Eastman Kodak Company, as an example for our investigation, although the tool works for any company you may be interested in. If you are a domainer, a marketer, a legal investigator, an IT security expert, or anyone interested in or working with Internet domains, you are in the right place. We’ll present a Swiss Army knife designed to fit your every need.

Continue reading
Try our WhoisXML API for free
Get started