Query breached emails, phone exposure, malicious IPs/URLs, file hashes, domains and CVE intelligence over a simple token-authenticated REST API.
Every request must include your API key in the Authorization header. Keep your
key secret — treat it like a password.
Authorization: Token YOUR_API_KEY
All endpoints are relative to the production base URL.
https://threatfusionai.com/api/
All lookups are GET requests with a query parameter.
/api/email-lookup/[email protected]
/api/phone-lookup/?query=15551234567
/api/banip-lookup/?query=8.8.8.8
/api/hash-lookup/?query=<hash>
/api/url-lookup/?query=https://example.com
/api/domain-lookup/?query=example.com
/api/cve-data/?cve=CVE-2024-0001
A complete request with curl:
curl -X GET "https://threatfusionai.com/api/email-lookup/[email protected]" \
-H "Authorization: Token YOUR_API_KEY"
Don't have an API key yet?
Request API access