WhoisXML API Launches New Passive DNS Product DNS Chronicle API | WhoisXML API

DNS & DNS History Blog

WhoisXML API Launches New Passive DNS Product DNS Chronicle API

We are excited to introduce DNS Chronicle API, the latest addition to our passive DNS offerings. This API release enables use cases such as proactive threat detection and attack surface discovery by providing visibility into the complete DNS history of a domain or an IP address.

With DNS Chronicle API, users can perform two types of passive DNS queries, namely:

  • Forward search: Using any FQDN as a search string, users can retrieve its historical A and AAAA records.
  • Reverse search: Users can obtain a list of all the FQDNs associated with a given IP address.

DNS Chronicle API allows users to:

  • Access extensive historical DNS intelligence: DNS Chronicle API taps into our Premium DNS Database, one of the largest DNS repositories with market-leading coverage comprising billions of recorded events.
  • Easily integrate and use the API: Like all our APIs, DNS Chronicle API can be readily integrated into existing systems. Query results are delivered in standardized formats for compatibility. Clear documentation is also available to ensure seamless integration and usage.
  • Make flexible API queries: DNS Chronicle API lets you conduct investigations based on information you currently have. You can access the past A and AAAA records of any domain name or discover all the domains associated with a specific IP address.

DNS Chronicle API’s use cases include:

  • Attack surface discovery: Identify hidden assets and exposed services within an organization’s network by querying IP addresses to discover domains or subdomains that may not be known or properly managed.
  • Detection of unusual patterns in DNS records: Regular passive DNS lookups using DNS Chronicle API can help security teams uncover anomalies that may indicate DNS misconfigurations or potential compromises.
  • Malicious actor and infrastructure monitoring: Track the activities of malicious actors and their associated infrastructure. Identify domains associated with malicious IP addresses or analyze the A and AAAA records of a malicious domain or subdomain.

The API output format is available here for review.

You can test DNS Chronicle API now or contact us to learn how you can use passive DNS data for attack surface management, threat detection, and other cybersecurity use cases.

Try our WhoisXML API for free
Get started