IP Address

DISCLAIMER: The following page contains links to third party websites which Inteller does not control nor inspect. Visit and use these sites at your own risk.
BGP Toolkit [http://bgp.he.net/]REPORT
BGP toolkit, provided by internet backbone provide Hurricane Electric, provides several tools for investigating web-related resources, such as IP addresses, IP ranges and AS. Perhaps it's most interesting feature is the ability to look up IP ranges based on organization name, whic is quite useful when researching the web assets of an organization. In addition, the site provides a list of IP ranges identified as BOGONs.

DomainTools WHOIS [http://whois.domaintools.com/]REPORT
DomainTools is a popular tool for investigators and researchers. While its free WHOIS query on domains and IP addresses is not unique, DomainTools premium services such as domain history or reverse domain lookup can be applied on the results.

Exonera TOR [https://exonerator.torproject.org/]REPORT
A tool provided by the TOR project to check whether a certain IP address was used as a TOR node on a certain date.

MX Toolbox [https://mxtoolbox.com]REPORT
MX Toolbox's Supertool can be used to perform dozens of different lookups, including MX lookup, site blacklist check, WHOIS lookup, DNS check and much more. One of its most interesting features is the reverse lookup - given an IP address, it will list all domains that are pointing to that server. While the results are often incomplete, it is a great tool for discovering additional domains that point to the same server, which can be very useful when performing link analysis research. Their RESTful API enables for querying their services, with a free-to-try option available.

RiskIQ PassiveTotal Community Edition [https://community.riskiq.com/]REPORT
Security firm RiskIQ offers a free community edition for its platform PassiveTotal, which collects comprehensive information on every site, IP address and domain. It is possible to query the platform for IP address, host, domain, SSL Cert SHA-1 to retrieve information on the queried item. Furthermore, it is possible to provide an E-mail address as the query and receive a list of sites that were registered using that address (WHOIS). Threat intelligence information, if associated with the results of the query, is also provided. The platform enables exploration of web resources related to the query. PassiveTotal Community Edition is free and requires registration. A premium tier and API are also available.

Robtex [http://robtex.com]REPORT
Robtex uses various sources to gather public information about IP numbers, domain names, host names, Autonomous systems, routes etc. It then indexes the data in a big database and provide free access to the data. It is a great resource for investigating websites, IP addresses and domains.

Threat Crowd [http://threatcrowd.org]REPORT
Threat Crowd is a site powered by AlienVault which provides the ability to search based on IP address, domain, E-mail or organization. A search provides available related information, such as WHOIS query results, as well as any indication of threats associated with the queried item, taken from AlienVault OTX. All information is provided in a visual graph view which enables the research of the results.

ThreatMiner [https://www.threatminer.org/]REPORT
ThreatMiner is a database of malware IOCs, including file samples, domains, hosts and E-mail addresses. While they only seem to be provide the last 10 entries, it is possible to query their database using an IP address, domain, E-mail address, and more, in order to see if they are part of a current or past malware campaign.
  Familiar with a free or freemium resource that can help the work of intelligence professionals and isn't listed here? Suggest a site!

About Inteller

Inteller empowers web intelligence teams by providing them with proprietary technology that automates collection, processing and dissemination of intelligence based on multiple and diverse web-based sources, customized for every team's needs.
We help our customers scale their intelligence collection and analysis operations, provide better deliverables to their stakeholders, all the while optimizing their resources for efficient collection and analysis.
The Inteller platform’s unique modular design enables it to monitor a wide array of sources, including dark web, open source, social media and more, while providing a high level of customization.

Click here to learn more.

FOLLOW US
 
SHARE PAGE