API Preview
Try Our Whitelist Intelligence API
Enter any IP, domain, hostname, or URL and get instant verdicts, provider detection, actionable recommendations, and 50+ infrastructure provider identification.
Quick test with:
Authentication Required
You must sign in to query the threat intelligence database.
Enter an IP, domain, hostname, or URL to begin search
Examples: 8.8.8.8, google.com, login.microsoft.com, https://github.com/releases
Instant Verdicts
likely_benign, investigate, malicious
REST API
Batch lookups with confidence scoring
180+ Sources
50+ providers detected (CDN, Cloud, VPN)
See What You're Missing
Same indicator, different depth of intelligence
Free Plan
{
"indicator": "104.16.132.229",
"status": "enrichment",
"confidence_level": "high",
"categories": [
"CDN",
"Cloud Provider"
],
"source_count": 5
}Pro Plan
{
"indicator": "104.16.132.229",
"status": "enrichment",
"confidence_score": 92,
"confidence_level": "high",
"verdict": "likely_benign",
"categories": [
"CDN",
"Cloud Provider"
],
"source_count": 5,
"provider": {
"name": "Cloudflare",
"type": "cdn_security"
},
"recommendation": {
"action": "allow_with_logging",
"false_positive_likelihood": "very_high",
"investigation_hint":
"Check HTTP Host header"
}
}Integrate in 5 Minutes
One API call to enrich your alerts
import requests
resp = requests.post("https://api.reput.io/lookup",
headers={"X-Api-Key": "rpt_your_key"},
json={"indicators": ["8.8.8.8", "evil.duckdns.org"]})
for r in resp.json()["results"]:
if r["status"] == "whitelisted":
print(f"✓ {r['indicator']} — auto-allow")
else:
print(f"⚠ {r['indicator']} — needs review")Ready to integrate our API into your SOC?
Access our comprehensive whitelist database with our high-speed REST API
View Plans and Pricing