Hero cover Hero cover

Discover, scan and monitor any online assets

With Netlas, it takes just a few minutes to build a scope and investigate it.

Thousands of IT security experts use Netlas.io as a reliable source of information for their day‑to‑day operations

Maxar logo Maxar logo Muscope logo Muscope logo Ovalsec logo Ovalsec logo Cogility logo Cogility logo BbairsDev logo BbairsDev logo Exinity logo Exinity logo Assetnote logo Assetnote logo DefendeEdge logo DefendeEdge logo Hacket logo Hacket logo Cybermaxx logo Cybermaxx logo Logically logo Logically logo Specterops logo Specterops logo

Netlas has landed on something that’s specifically new and different, especially as a standalone offering, and has a multitude of use cases.
I’m building and running a security program at a startup and I can’t afford a lot of the larger tools/subscriptions that would give me access to the data Netlas offers.

Jeff Geiger

Jeff Geiger

Senior Director of Security at Selfbook

Today I tested @Netlas_io (since I needed a replacement for @securitytrails).

Its worth the money — some of you know I am heavily into automation, data quality is important. When it comes to price/performance ratio — Netlas is currently the way to go.

Damian Strobel

Damian Strobel

Founder of dsecured.com

Netlas has been highly effective for our threat-hunting efforts. In particular, my team has found the response search invaluable. We use it for locating potential text strings, keywords, or filenames related to malicious domains. Another use case is to identify possible subdomains associated with malicious domains.

Hieu (Hieupc) Ngo

Hieu (Hieupc) Ngo

Threat Hunter at NCSC Viet Nam

🙌 @netlas_io A valuable tool and a fantastic product that’s making life easier for pentesters and bug hunters!

🐞🔍 With its advanced reconnaissance and automation features, Netlas is a game-changer for identifying security threats and vulnerabilities.

Begin n Bounty

Begin n Bounty

Practical bug bounty tips channel

Netlas has led me to discover numerous new assets, facilitating successful subdomain takeovers. Additionally, I’ve been using Netlas for identifying vulnerable services using keywords, titles, or favicon hashes, a strategy that has yielded significant success. I’ve found Netlas to be the most cost-effective and reliable option.

Jayesh Madnani

Jayesh Madnani

CEO and Hacker in charge @ EIS

I tested Fofa, Hunter, Shodan, but Netlas gives absolutely accurate results. Suppose if I search for swagger-ui then I will get proper results regarding my query and the best thing is, that those urls are working. If I do the exact same thing in other IoT search engines, only 70-80% of their results work, and here I see 95%!

Chirag Artani

Chirag Artani

Penetration tester, bug bounty hunter

Essential Netlas Tools

Apps for reconnaissance, non-intrusive security assessment, and security‑related research

Netlas data collections Netlas data collections

Powerful Search Tools

Netlas Attack Surface Discovery Tool Netlas Attack Surface Discovery Tool

Attack Surface Discovery Tool

Discovery Tool →
Netlas On-Demand Passive Internet Scanner Netlas On-Demand Passive Internet Scanner

Super-Fast On-Demand Scanner

Private Scanner →
Netlas as a relible data provider Netlas as a relible data provider

Datastore & Streaming API

Datastore →

What makes Netlas a great choise?

Superior scanning technology and powerful search tools

888,848,074
Active Internet Services
2,476,575,140
Domains in Current DNS Collection
4,073,128,452
SSL Certificates Parsed
11,376,033
IP WHOIS Records
241,651,722
Domain WHOIS Records
Hundreds of Terabytes of Data Available
Gain access to an immense repository of data, covering internet scan results, DNS records, WHOIS details, and more, all at your fingertips.
Fully Parsed and Structured Data
All data is carefully parsed into well-structured JSON documents, enabling seamless searches across any field for maximum flexibility and precision.
Designed for Threat Intelligence
Search using favicon hashes, technologies, JARM fingerprints, SSL certificate data, protocol details, and more to identify vulnerabilities and track threats.
Privacy-Focused On-Demand Scanning
Scan any internet-connected assets without restrictions, using Netlas’ non-intrusive scanners, ensuring compliance, discretion, and robust, actionable results.
Vulnerabilities and PoCs
Netlas scanners flag possibly vulnerable services and provides links to external tools that allow you to perform active vulnerability assessment tests.
API & Python SDK
Use Netlas on the web or through a CLI. Use the SDK to create automation scripts or to perform integrations with other products.

Looking for more reasons?

Netlas IoT Search Engine

Explore comprehensive internet scan data

The most in-demand tool for cybersecurity and OSINT professionals, Netlas IoT Search Engine provides data on the majority of publicly available services. Enriched with WHOIS, DNS, and other contextual information, it allows users to search across thousands of fields, delivering unmatched depth and accuracy for your investigations.

Netlas Responses search document example Netlas Responses search document example

WHOIS, Geo, and other Metadata

Understand the who, where, and what of online assets

Netlas’s platform provides access to comprehensive metadata, delivering valuable context for analyzing internet-connected assets. With geolocation details, provider information, WHOIS data, and more, users can enrich their investigations, uncover asset origins, understand ownership, and identify relationships across the online ecosystem.

Netlas global internet scan data map Netlas global internet scan data map

Advanced Query Language

Use logical operators, wildcards, regexp, fuzzy & proximity searches

Netlas provides a versatile query language that’s available across all its search tools, enabling users to refine searches and extract the most relevant results. With logical operators, wildcard matching, regular expressions, and advanced features like fuzzy and proximity searches, you can precisely target the data you need. Whether you’re analyzing WHOIS records, SSL certificates, or internet scan data, these powerful capabilities make it easy to navigate complex datasets and uncover actionable insights.

Netlas complex query sample Netlas complex query sample

Historical Data Access

Track Changes and Trends Over Time

Netlas provides access to historical records for all data collections, except SSL certificates, enabling users to analyze how assets, configurations, and services have evolved. This historical perspective is invaluable for tracking changes in an organization’s digital footprint, spotting potential vulnerabilities, and conducting comprehensive assessments of evolving risks. SSL certificates, however, inherently contain validity periods and expiration details, making additional historical data unnecessary.

Global Security Data

Cybersecurity research goes global with Netlas.io

The passive scan method used by Netlas.io identifies products and technologies from about 3 out of 4 host responses. In about a third of cases, the product version is also recognized. Vulnerabilities are identified based on product versions according to the U.S. Government National Vulnerability Database and updated with each new scan. Netlas.io also provides information about exploits availability.

Vulnerable devices distribution on the world map Vulnerable devices distribution on the world map

Made for Automation

You can easily integrate Netlas in your own app

Full-REST API

The Netlas web app uses an API that is available to any Netlas user. This means that you can call any function in the web app via the API from any third-party application.

Documentation

Netlas SDK & Examples

Check out the Netlas Github repository. There you will find some Netlas usage examples and an SDK for the Python language. SDK implementations for other languages will come later.

Github Repository

Netlas API in Swagger UI

The Netlas team welcomes the independent development of Netlas-based tools. These could be anything ranging from simple scripts to complex automation. Netlas API is available in the OpenAPI format.

Interract with Netlas API

Command-Line Friendly

Use Netlas to orchestrate your needs. Utilize it in your automation scripts for data search and enrichment

The Netlas Python SDK includes a command-line interface. If you have Python installed, just use the Python package installer to setup the SDK. Once you have completed that step, you can interact with Netlas.io using the command-line.

user@host ~ % netlas
Usage: netlas [OPTIONS] COMMAND [ARGS]...

Options:
  -h, --help Show this message and exit.

Commands:

  count Calculate count of query results.

  download Download data.

  host Host (ip or domain) information.

  indices Get available data indices.

  profile Get user profile data.

  savekey Save API key to the local system.

  search (query) Search query.

  stat Get statistics for query.

Get your free Netlas account!

Sign up to get up to 50 requests/day for free