Skip to main content

Understand the API response

Comprehend the API's output

The API response sent by the Domain Intel /reputation call includes various fields and values; however, the ones listed below give you the most information about the disposition of a domain. To learn about more response fields, visit the Domain Intel API Reference.

verdict

The verdict normalized categorization as interpreted by the data returned by the third party provider. There are four possible verdicts:

  • Benign - Confirmed as non-malicious

  • Suspicious - Associated with actions that are malicious

  • Malicious - Confirmed as malicious

  • Unknown - No data

score

The normalized score as interpreted by the data returned by the third party provider. Scores are associated with the verdict values listed above:

  • 0 = Benign

  • 1 - 99 = Suspicious

  • 100 = Malicious

  • -1 = Unknown

summary

A summary of the various categories associated with a domain, which help illustrate why a domain received a particular verdict.

category

Indicates the category of file associated with the domain (e.g. Adware, Malware). This field may return more than one category and may, at times, not be populated.

raw

Raw data returned by the provider you specified in the API request. You can investigate the raw data if its meaningful to your use case or if you want to supply it to your users. You must set the raw field to true to receive this data.

The API response sent by the Domain Intel /whois call includes various fields and values; however, the ones listed below give you the most information about the disposition of a domain. To learn about more response fields, visit the Domain Intel API Reference.

contact_emailThe email address of the contact.
created_dateThe date the domain was created.
domain_availabilityThe availability of the domain.
domain_nameThe domain name.
estimated_domain_ageThe estimated age of the domain.
expires_dateThe domain's expiration date.
host_namesThe host names associated with the domain.
ipsThe IP addresses associated with the domain.
registrant_countryThe country of the registrant.
registrant_organizationThe organization of the registrant.
registrar_nameThe name of the registrar.
updated_dateThe domain's most recent update date.

Was this article helpful?

Contact us