APIs

The Deepinfo dataset, exposed for engineering teams.

API Services are query-based access to the Deepinfo dataset, structured for engineering integration into pipelines, applications, and security tooling. Deepinfo APIs cover domain search and discovery, vulnerability lookup, Whois history, DNS and SSL state, and dark web checks. Same dataset as the platform, accessed how your stack needs it.

APIs across four categories: Domain Search and Discovery, History, Vulnerability, and Lookup. Search and pivot through the indexed domain corpus, query multi-year history, score vulnerabilities, and run live lookups against any target. The same dataset that drives the Deepinfo Platform, exposed for your engineering team to build with.

Talk to us Browse API docs

deepinfo — api shell

❯ ✔ Authenticated. ✔ Query: typosquat_risk > 80 ✔ Scanning 400M+ domain corpus… ✔ 2,847 matches found. ✔ Enriching: Whois · DNS · SSL… ✔ Risk scores calculated. ℹ Results ready · 48ms — paypal-secure-login.com risk: 94 — apple-id-verify.net risk: 91 — micros0ft-update.org risk: 89 ❯ █

DOMAIN SEARCH AND DISCOVERY

Search the namespace.

Query the indexed domain corpus by any field, or pivot from any seed.

Domain Search API

Filter the full domain corpus by any of 149 indexed fields and 11 query operators. Boolean filter clauses, sorting, and pagination.

Domain Detail API

Pass a domain. Get back the full enriched record: Whois, DNS, SSL, registration metadata, and risk scoring.

Subdomain Finder API

Pass an apex domain. Get back every subdomain Deepinfo has observed, sourced across passive DNS, CT logs, active scanning, and web crawling.

Associated Domain Finder API

Pass a seed domain. Get back the cluster that shares registrar, registrant, name server, certificate, or string-similarity signals.

Same Time Registered Domain Finder API

Pass a seed. Get back domains registered within a configurable window around the seed's registration.

Reverse Whois Email API

Pass an email address. Get back every domain whose Whois registrant email matches.

Pass a name server hostname. Get back every domain that uses it.

Pass an MX record value. Get back every domain that routes mail through it.

Pass an IP address or CIDR. Get back every domain that resolves to it.

Pass a domain name. Get back every TLD where that name is registered.

HISTORY

Years of record.

Multi-snapshot state over years of observation.

Whois History API

Pass a domain. Get back every Whois snapshot Deepinfo has observed.

DNS History API

Pass a domain and a record type. Get back every DNS observation Deepinfo has on file.

VULNERABILITY

Every CVE, ranked.

The CVE corpus enriched with EPSS, CISA KEV, and Deepinfo risk scoring.

Vulnerability Search API

Filter the CVE corpus by any of 243 indexed fields and 11 query operators. Sort by EPSS, CVSS, or KEV listing.

Vulnerability Finder API

Pass an FQDN, IP, or URL. Get back the technologies detected and the CVEs that affect them.

Vulnerability Detail API

Pass a CVE ID. Get back the full enriched record: CVSS, EPSS, CISA KEV, CWE, affected products, references.

LOOKUP

Ask any target.

Live state lookups against domains, IPs, and URLs.

Whois Lookup API

Pass a domain. Get back the current registration record: registrar, dates, registrant, name servers, and status codes.

IP Whois Lookup API

Pass an IP address. Get back the current registration record: allocation, organization, ASN, country, abuse contact.

Pass an FQDN and one or more record types. Get back the current authoritative DNS response.

Pass a domain or IP. Get back the active certificate, full chain, expiry dates, SANs, and connection diagnostics.

Webdata Lookup API

Pass a URL. Get back rendered page metadata: status, redirects, headers, title, and indexable text.

Technology Lookup API

Pass a URL. Get back the full technology stack detected with version inferences.

Screenshot Lookup API

Pass a URL. Get back a rendered screenshot of the page along with capture metadata.

Pass a target. Get back the open ports detected, the service banners observed, and basic protocol fingerprinting.

GET STARTED

Run sample calls, or have us walk you through it.

Most teams test against five or ten of their own targets before integrating. We'll set up token access and answer schema questions on a call.

Talk to us Or explore the data feeds