Changelog¶

Stay informed about the latest improvements, new features, and changes to DomainTools products and services.

Subscribe: RSS 2.0 JSON 1.1

Iris

Threat intelligence platform for investigating domains and detecting threats.

DNSDB

Passive DNS database for historical DNS records and threat hunting.

Threat Feeds

Real-time and daily threat intelligence feeds for proactive defense.

SIE

Security Information Exchange for real-time threat data streaming.

Risk Score

Machine learning-powered domain risk scoring and threat classification.

All Risk Score Updates

API

Programmatic access to DomainTools data and services.

All API Updates

Integrations

Third-party platform integrations for seamless threat intelligence workflows.

Browse updates by category or view the complete timeline below.

March 31, 2026
in API, Integrations, MCP, Added

DomainTools MCP Server

MCP Server for integrating DomainTools domain intelligence into AI-powered workflows through the Model Context Protocol.

February 5, 2026
in Added, LLM

LLM-optimized API documentation

Plain text API documentation files for DNSDB, Iris Investigate, and Threat Feeds, designed for integration with large language models and RAG systems.

January 28, 2026
in Iris, Iris Investigate, Added, User interface

Flexible search in the Iris Investigate pDNS panel

Regex-based domain discovery added to the Passive DNS panel for pattern matching across DNS records.

January 16, 2026
in Iris, Iris Investigate, Added, User interface

IrisQL query language in Iris Investigate

Text-based query language for building and sharing Advanced Search queries, with round-trip editing between code and the visual UI.

November 19, 2025
in Risk Score, Changed

Realtime Risk Scoring enhancements

Risk scoring is now dramatically faster in Iris Investigate, Detect and Enrich with provisional scores available within 5 minutes and full scoring typically complete within 25 minutes, significantly improved from the previous 24-36 hour timeframe.

August 1, 2025
in Iris, Iris Investigate, Changed, API

Iris Investigate API enhancements

The Iris Investigate API now supports more queryable fields, compound searches, larger result sets, and historical search capabilities for Whois data.

August 1, 2025
in Iris, Iris Investigate, Added, User interface

Recent subdomains in Iris Investigate

View recent subdomains from Passive DNS directly in the domain profile tab, with quick access to detailed pDNS information.

July 22, 2025
in DNSDB, DNSDB Scout, Changed, User interface

DNSDB Scout v2.5.9: Streamlined interoperability

Enhanced interoperability with Iris Investigate and other investigation tools through seamless pivoting and improved data formatting.

July 1, 2025
in Iris, Iris Investigate, Iris Enrich, Iris Detect, Added

Screenshots available from Iris APIs

Retrieve domain screenshots directly through the Iris Investigate, Iris Enrich, and Iris Detect APIs with optional resizing capabilities.

April 30, 2025
in DNSDB, DNSDB Scout, Changed, User interface

DNSDB Scout v2.5.8: Standard Search now default

Standard Search is now the default search option in DNSDB Scout, along with bug fixes.