Offline Threat Database

Download FraudGuard’s threat intelligence as a local database so your security stack can make instant decisions with zero latency, zero API overhead, and zero external dependencies.

  • Downloadable SQLite + CSV formats
  • Tuned over a decade of real-world honeypot intelligence
  • Perfect for firewalls, SIEMs, WAFs, and air-gapped environments
  • Massive scale workflows: enrich at line-rate without per-request API calls
  • Always fresh: daily updates for Business, hourly updates for Enterprise

Start Free Trial View Download Docs

Instant Decisions at Scale

Stop paying an API-tax for high-volume security workflows. Query locally for near-zero latency decisions across billions of log lines, firewall events, and SIEM searches — without rate limits, network hops, or external dependencies.

SQLite + CSV, Your Choice

Use SQLite for fast local lookups and indexing, or CSV for ingestion into your pipelines. Both formats include ACE-backed fields like threat classification, risk level, and enriched context for internal workflows.

High-Confidence Intelligence

This is not a scraped IP list. The Offline Threat Database is derived from FraudGuard’s global honeypots and Attack Correlation Engine (ACE) — tuned over years to reduce false positives, surface repeat offenders, and reflect real-world attacker behavior at scale.

Built for Security Stacks

Preload block rules, enrich alerts, and correlate incidents using the same dataset that powers FraudGuard’s live APIs. Ideal for firewalls, reverse proxies, SOAR tooling, detection engineering, and forensic pipelines.

Offline & Air-Gapped Friendly

Run with confidence in restricted networks and environments that can’t depend on outbound connectivity. Download on your schedule, deploy internally, and keep decisioning local.

Always Fresh Updates

Business Plan downloads refresh daily. Enterprise Plan downloads refresh hourly for maximum responsiveness. Downloads are rate-limited to one per time interval to keep access fair and predictable.



Why Offline Threat Intel Wins

When you need to enrich at scale, APIs become a bottleneck: latency, rate limits, retries, and cost per request add up fast. The Offline Threat Database removes all of that — you query locally, at your speed, inside your perimeter.

OfflineDB also helps teams meet strict privacy, compliance, and data residency requirements. Your logs, IPs, and user activity never need to be shipped to third parties or external services — ideal for environments that handle sensitive data or prohibit sharing PII outside their network.

It’s a perfect fit for regulated, restricted, or high-security environments where outbound internet access isn’t guaranteed — or simply isn’t allowed.




Get Started

The Offline Threat Database is included with FraudGuard Business and Enterprise plans and require an active subscription to download. Have any questions? Just email hello@fraudguard.io.


Start Free Trial View Pricing