Get a domain reputation score
GET https://api.threatintelligenceplatform.com/v1/reputation?domainName=threatintelligenceplatform.com
Request Params
| Key | Datatype | Required | Description |
|---|---|---|---|
domainName | string | The target domain name or IPv4 address. | |
mode | null | TIP can check the domain specified in two modes: "fast" (default): only select test codes will run — i.e., 62 WHOIS Domain status, 82 Malware Databases check, 87 SSL certificate validity, and 93 WHOIS Domain check—while other tests and data collectors will be disabled. "full": All tests will be performed, similar to what the TIP GUI displays. |
RESPONSES
status: OK
{"mode":"full","reputationScore":74.13,"testResults":[{"test":"SOA record configuration check","testCode":84,"warnings":["Although the serial number is valid, it's not following the general convention: 2292107415","The expire interval is 604800. Recommended range is [1209600 .. 2419200]"],"warningCodes":[1019,1022]},{"test":"Mail servers configuration check","testCode":80,"warnings":["The following mail servers use the same IPv6 address: 2607:f8b0:400e:c00::1a - alt2.aspmx.l.google.com, aspmx3.googlemail.com","The top priority mail server is ASPMX.L.GOOGLE.com, but TTL is not equal to the recommended value (86400)"],"warningCodes":[5018,5020]},{"test":"Real-time blackhole check","testCode":32,"warnings":["Mail server alt2.aspmx.l.google.com listed on zen.spamhaus.org","Mail server aspmx2.googlemail.com listed on cbl.abuseat.org","Mail server aspmx.l.google.com listed on zen.spamhaus.org","Mail server alt1.aspmx.l.google.com listed on cbl.abuseat.org"],"warningCodes":[5001]},{"test":"SSL vulnerabilities","testCode":88,"warnings":["HTTP Strict Transport Security not set","TLSA record not configured or configured wrong","OCSP stapling not configured"],"warningCodes":[6015,6019,6021]}]}