Criminal IP's Attack Surface Management (ASM) is an intelligence-driven platform designed to continuously identify, catalog, and oversee all internet-connected assets linked to an organization, including overlooked and shadow resources, enabling teams to understand their actual external exposure from the perspective of potential attackers. This solution integrates automated asset detection with open-source intelligence (OSINT) methods, artificial intelligence enhancements, and sophisticated threat intelligence to reveal exposed hosts, domains, cloud services, IoT devices, and other internet-facing entry points, while also collecting evidence such as screenshots and metadata, and linking findings to known vulnerabilities and attacker techniques. By evaluating exposures through the lens of business relevance and risk, ASM emphasizes vulnerable elements and misconfigurations, providing instantaneous alerts and interactive dashboards that facilitate quicker investigations and remediation efforts. Furthermore, this comprehensive tool empowers organizations to proactively manage their security posture, ensuring that they remain vigilant against emerging threats.
Learn more
Criminal IP is a cyber threat intelligence search engine that detects vulnerabilities in personal and corporate cyber assets in real time and allows users to take preemptive actions. Coming from the idea that individuals and businesses would be able to boost their cyber security by obtaining information about accessing IP addresses in advance, Criminal IP's extensive data of over 4.2 billion IP addresses and counting to provide threat-relevant information about malicious IP addresses, malicious links, phishing websites, certificates, industrial control systems, IoTs, servers, CCTVs, etc.
Using Criminal IP’s four key features (Asset Search, Domain Search, Exploit Search, and Image Search), you can search for IP risk scores and vulnerabilities related to searched IP addresses and domains, vulnerabilities for each service, and assets that are open to cyber attacks in image forms, in respective order.
Learn more
IPLocate
IPLocate (iplocate.io) is an API platform that provides businesses with accurate IP address data and geolocation insights, empowering them to improve security, personalize user experiences, and enforce regional compliance. With real-time geolocation capabilities, the platform enables users to detect the exact location of an IP address, providing data like city, region, currency code, and time zone. IPLocate also offers security features such as VPN, proxy, and Tor detection, making it easier to prevent fraud and abuse. The API is easy to integrate, with detailed documentation, and offers a free tier with 1,000 requests per day, providing businesses access to all the essential IP intelligence data.
Learn more
IPWho
IPWho.org — low-latency IP geolocation API (bare-metal, not hyperscale)
• Free tier: 2,000 requests/day, full functionality, no credit card required
• Core data: country, region, city, timezone, currency, ISP / ASN
• Extras: user-agent parsing + security signals (VPN / proxy / Tor detection)
Architecture & performance
• Built on multi-region bare-metal infrastructure (not typical cloud stack)
• 12+ global origin locations with additional edge acceleration
• <50ms median latency for ~90% of global requests (via regional placement + low-level optimisation)
• Private network design focused on predictable latency and throughput
Pricing & positioning
• Usage-based pricing below typical commercial IP geolocation APIs
• Lower cost base due to avoiding hyperscaler overhead
• Straightforward REST API + SDK support
Intended audience
• Developers who want lower latency + lower cost than standard cloud-hosted IP APIs
• Suitable for real-time use cases where speed and cost per request matter
Learn more
