Developers can check API Specification here:
curl -H "Authorization: Bearer <API_KEY>" https://api.maltiverse.com/ip/49.233.41.201
import requests
import json
url = 'https://api.maltiverse.com/ip/49.233.41.201'
response = requests.get(url)
print(json.dumps(response.json(), indent=4, sort_keys=True))
$url = 'https://api.maltiverse.com/ip/49.233.41.201'
$headers = @{Authorization=("Bearer {0}" -f "<API_KEY>")}
$response = Invoke-RestMethod $url -Headers $headers
Write-Output $response
{
"address": "Beijing, China",
"asn_cidr": "49.233.32.0/20",
"asn_country_code": "CN",
"asn_date": "2010-11-26 00:00:00",
"asn_registry": "apnic",
"blacklist": [
{
"count": 1,
"description": "SIP Attacker",
"first_seen": "2020-10-20 01:20:55",
"last_seen": "2020-10-25 08:03:31",
"source": "Blocklist.de"
},
{
"count": 1,
"description": "SSH Attacker",
"first_seen": "2020-10-19 01:26:59",
"last_seen": "2020-10-23 07:58:52",
"source": "Blocklist.de"
},
{
"count": 1,
"description": "Malicious Host",
"first_seen": "2020-10-18 00:00:00",
"last_seen": "2020-10-18 00:00:00",
"source": "HoneyDB"
},
{
"count": 1,
"description": "Malicious host",
"first_seen": "2020-10-19 02:23:45",
"last_seen": "2020-10-19 02:23:45",
"source": "Darklist"
}
],
"cidr": [
"49.232.0.0/14"
],
"classification": "suspicious",
"country_code": "CN",
"creation_time": "2020-10-19 01:26:59",
"email": [
"ipas@cnnic.cn",
"harveyduan@tencent.com"
],
"ip_addr": "49.233.41.201",
"ip_version": 4,
"is_cdn": false,
"is_cnc": false,
"is_distributing_malware": false,
"is_hosting": false,
"is_iot_threat": false,
"is_known_attacker": false,
"is_known_scanner": false,
"is_mining_pool": false,
"is_open_proxy": false,
"is_sinkhole": false,
"is_tor_node": false,
"is_vpn_node": false,
"location": {
"lat": 39.9289,
"lon": 116.3883
},
"modification_time": "2020-10-25 08:03:31",
"number_of_blacklisted_domains_resolving": 0,
"number_of_domains_resolving": 0,
"number_of_offline_malicious_urls_allocated": 0,
"number_of_online_malicious_urls_allocated": 0,
"number_of_whitelisted_domains_resolving": 0,
"registrant_name": "Tencent cloud computing (Beijing) Co., Ltd.\nFloor 6, Yinke Building,38 Haidian St,\nHaidian District Beijing",
"tag": [
"ssh",
"bruteforce",
"bot",
"sip",
"attacker"
],
"type": "ip"
}
Classification | Count | Percentage |
---|---|---|
Malicious | 1 | 0.024% |
Suspicious | 100 | 2.441% |
Neutral | 3995 | 97.534% |
Whitelist | 0 | 0% |