For Security Operations Centers (SOCs), Fraud Analysts and Solution Vendors that need to integrate DomainTools data into their existing workflows, we offer comprehensive and scalable APIs. Our APIs are used by customers and partners to put DomainTools data adjacent to their network through partner pass-through integrations to enable workflows in TIP, Orchestration and SIEM technologies. Additionally, our APIs are REST based and come with pre-written python wrappers making it easy to incorporate into your own internal tools as you see fit.
Domain-based threat intelligence is a natural complement to many security products.
Integrate into SIEM and detection tools to provide domain profile information in “one pane of glass.”
Scale your efforts by leveraging DomainTools data directly into your workflows.
|Iris Investigate API||Iris Enrich API|
|API Complexity||Single REST Endpoint||Single REST Endpoint|
|Optimization||Data Thoroughness||Fast Response|
|Domain Profiles||Always included||Always included|
|Pivot Counts||All fields||-|
|Risk Score||Included, with evidence||Included|
|Batch Processing||Up to 100 domains/call||Up to 100 domains/call|
|Pivots||One endpoint, most fields||-|
|Query Allocation||Shared with Iris web app||Independent service levels|
|Packaging||Included with Iris||Sold Separately|
|Monitoring||With a query parameter||Domains Only|
A selection of documents and materials related to DomainTools industry topics.
Subscribe to DomainTools monthly newsletter to receive innovative, practical advice for improving their security posture. Our goal is to help enable organizations to be more efficient, knowledgeable, and proactive in the day-to-day defense of their organization.