Get access to the biggest Passive DNS Database

We provide a large Historic DNS repository with 2 billion hostnames and hundreds of billions of Historic DNS Lookups. Find out all historical DNS data points for any hostname and IP address from 2008 onward, in the exhaustive and properly parsed format of an MYSQL dump or CSV file.

Download database
DNS Database Download


  • The comprehensive and coherent database covers more TLDs than any other.

    We offer the most recently updated domain database with every domain name linked to its IP address and host. Get downloads for all major gTLDs.

  • Get access to exhaustive and properly parsed data.

    Obtain an up-to-date DNS database archive download as Comma Separated Values (.CSV) files or database dumps (MYSQL) to stay on top of the latest changes — suspicious or not — to DNS records.

  • Transform threat intelligence into actionable prevention and mitigation steps.

    The manual parsing of raw passive DNS data can be a tedious and error-prone job. With DNS Database Download, users can skip the legwork and readily turn feeds into effective defensive measures.

Practical usage

Threat Hunting and Threat Defense

Threat Hunting and Threat Defense

  • Track down suspicious cyber resources (hostname, IP, command and control servers) and get the latest malware, phishing or other threat information.
  • Detect patterns of malicious activity and identify phishing or other targeted attacks.
  • Discover associations among threat actors based on Domain, IP & DNS associations to track and block their activity.
  • Conduct fact-based risk profile audit of domain names, IP addresses and other digital assets.
  • Reveal all domains using the same host, DNS server, MX server or other infrastructure used by an existing known malicious domain/threat actor.
  • Uncover all IPs a bad actor is using to hide malicious activity and avoid takedowns.
  • Conduct third-party audits of DNS/MX configurations.
  • Research fraudulent anomalous activity and have the intel and context needed to prevent them from reoccurring in the future.

Cyber Crime investigation

Cybercriminals like to use the same infrastructure source and leave similar signatures and traces behind. DNS History allows you to follow those leads.

Cyber Forensics analysis

Discover DNS records changes and see how threat incidents correlate. Accelerate incident response and post-breach analysis with context using current and historic domain and IP information.

Cyber Security and anti-malware solutions

Identify spam, dangerous websites, intrusions, and other web-related misbehavior.

SIEM data enrichment

Provides DNS intelligence across a variety of SIEM, Orchestration, Automation and Threat Intelligence Platforms. Power next-generation Firewalls with better DNS intelligence data points.

Brand Protection & Market Intelligence

Brand Protection & Market Intelligence

  • Monitor your brand’s trademark or copyright and be notified of infringement when they are used on fraudulent domains.
  • Identify associations between IP addresses, hostnames, and organizations.
  • Gain insights into domains.

Powering Domain / IP Reputation Scoring Systems

Establish Domain/IP reputation standards with facts and use those to reveal domain and IPs used by malicious actors.

Powering Domain/IP Reputation Scoring Systems

Request a download of the DNS Database

DNS Database Download | Whois XML API

API integration available

Learn more about API integration

Trusted by
the smartest

Have questions?

We work hard to improve our services for you. As part of that, we welcome your feedback, questions and suggestions. Please let us know your thoughts and feelings, and any way in which you think we can improve our product.

For a quick response, please select the request type that best suits your needs. For more info regarding the request types, see the Contact us page.

By submitting, you agree to the Terms of Service and Privacy Policy.

Or shoot us an email to