Integrations

Malfors includes first-party integrations with leading threat intelligence, OSINT, and other data vendors. If the vendor you need is not supported yet, let us know and we can add it. You can also build your own integrations with our API and private enrichments.

Enrichment vendors

  • abuse.ch

    Malware samples and behavioral metadata for file hashes and infrastructure.

  • AbuseIPDB

    Abuse reports and reputation scores for IP addresses.

  • Blockchain

    Transaction and balance data for crypto addresses.

  • Darkside by District 4 Labs

    Breach records and stealer log data for email addresses, usernames, and other entities.

  • DNSDumpster

    DNS records and subdomain data for domains.

  • Epieos

    Linked accounts and OSINT details for emails and phone numbers.

  • Hudson Rock

    Breach and cybercrime intelligence for people, credentials, and infected devices.

  • Hunt.io

    Threat intelligence, signatures, C2 data, and infrastructure context for IP addresses.

  • IpInfo

    Geolocation, ASN, and ownership data for IP addresses.

  • SecurityTrails

    DNS history, WHOIS, and infrastructure context for domains and IPs.

  • Shodan

    Open ports, banners, and device details for IP addresses.

  • Silent Push

    Threat intelligence and activity patterns for domains, IPs, and other entities.

  • Urlscan

    Scan details, pivots, and Urlscan Pro data for URLs, domains, and related infrastructure.

  • VirusTotal

    Malware detections, file reputation, and threat context for entities.

  • WalletExplorer

    Wallet clustering and entity links for crypto addresses.

  • WhoisXMLAPI

    WHOIS records, history, and registrar info for domains.