Integrations

Malfors includes first-party integrations with leading threat intelligence, OSINT, and other data vendors. If the vendor you need is not supported yet, let us know and we can add it. You can also build your own integrations with our API and private enrichments.

Enrichment vendors

abuse.ch

Malware samples and behavioral metadata for file hashes and infrastructure.

AbuseIPDB

Abuse reports and reputation scores for IP addresses.

Blockchain

Transaction and balance data for crypto addresses.

BuiltWith

Technology stack, relationships, tag pivots, and trust data for domains.

Crt.sh

Certificate transparency logs, certificate records, and subdomain discovery for domains.

Darkside by District 4 Labs

Breach records and stealer log data for email addresses, usernames, and other entities.

DNSDumpster

DNS records and subdomain data for domains.

Epieos

Linked accounts and OSINT details for emails and phone numbers.

Hudson Rock

Breach and cybercrime intelligence for people, credentials, and infected devices.

Hunt.io

Threat intelligence, signatures, C2 data, and infrastructure context for IP addresses.

IpInfo

Geolocation, ASN, and ownership data for IP addresses.

SecurityTrails

DNS history, WHOIS, and infrastructure context for domains and IPs.

Shodan

Open ports, banners, and device details for IP addresses.

Silent Push

Threat intelligence and activity patterns for domains, IPs, and other entities.

Urlscan

Scan details, pivots, and Urlscan Pro data for URLs, domains, and related infrastructure.

VirusTotal

Malware detections, file reputation, and threat context for entities.

WalletExplorer

Wallet clustering and entity links for crypto addresses.

WhoisXMLAPI

WHOIS records, history, and registrar info for domains.