IPSwamp APIThreat Intelligence & IP Reputation

Quick Start ​

Get up and running with the IPSwamp API in minutes:

# Check an IP address
curl -X GET "https://ipswamp.com/api/v1/checkIP?ip=1.1.1.1" \
  -H "Authorization: Bearer your-api-key-here"

{
	"message": "IP found!",
	"details": {
		"threat_score": 55,
		"threat_level": "HIGH",
		"ip": "80.94.92.164",
		"last_attack": "2026-04-01T20:19:59.000Z",
		"ip_rep": "known attacker",
		"total_hits": 28,
		"score": 55
	},
	"ipInfo": {
		"ip": "80.94.92.164",
		"asn": "AS47890",
		"as_name": "UNMANAGED LTD",
		"as_domain": "unmanaged.uk",
		"country_code": "RO",
		"country": "Romania",
		"continent_code": "EU",
		"continent": "Europe"
	}
}

Why IPSwamp? ​

• Comprehensive Coverage: Threat intelligence from multiple global sources
• Real-time Updates: Our database is continuously updated with new threats
• Developer Friendly: Clean REST API with detailed documentation
• Flexible Plans: From free tier to enterprise solutions
• Global Scale: Powered by distributed infrastructure for low latency

Popular Use Cases ​

• Security Monitoring: Analyze incoming connections for threats
• Access Control: Block malicious IPs automatically
• Compliance: Meet security audit requirements
• Incident Response: Investigate suspicious activities
• Log Enrichment: Add context to security logs