MalDatabase

API

Curated malware datasets and real-time threat intelligence feeds API

Visit Website

Overview

MalDatabase API offers RESTful access to curated malware datasets (hash lists, file metadata, threat actor profiles) and real-time threat feeds. Key endpoints include /api/v1/malware/{hash} (retrieve hash details, detection rates, linked threats), /api/v1/feeds/threats (stream malicious IPs/domains), and /api/v1/actors (TTPs and actor profiles). Responses are JSON-formatted. Use cases: SIEM enrichment for proactive detection, antivirus hash lookup, malware research, and automated threat response workflows.

Example Integration (JavaScript)

script.js JS 

fetch('https://maldatabase.com/api-doc.html')
  .then(res => res.json())
  .then(data => console.log(data))
  .catch(err => console.error(err));

Key Features

  • RESTful Interface
  • JSON Responses
  • Malware Hash Lookup
  • Real-Time Threat Feeds
  • Threat Actor Profiles

Frequently Asked Questions

? Is MalDatabase API free to use?

Yes, it has a free tier with basic access; paid plans unlock unlimited requests and extended data features.

? Does it require an API Key?

Yes, an API key is mandatory for authenticating requests to most endpoints.

? What is the response format?

All API responses are in JSON format, which is ideal for parsing and integrating into security systems.

Top Alternatives

People Also Ask about MalDatabase

MalDatabase 2025 review

Tool Info

Pricing Freemium
Category Anti-Malware
Platform Public API

Pros

  • High-Quality Curated Data
  • Easy Integration with Security Tools
  • Comprehensive Threat Coverage

Cons

  • Rate Limits on Free Tier
  • Requires API Key
  • Limited Historical Data in Basic Plan

More Anti-Malware Tools

URLScan.io

Scan and analyze URLs for malware, phishing, and threats

Metacert Link Flagging API

Real-time link scanning for malware and phishing protection

Scanii

Simple REST API for scanning files and documents for malware threats