Documentation Index

Fetch the complete documentation index at: https://help.silentpush.com/llms.txt

Use this file to discover all available pages before exploring further.

Bulk Enrichment

  • Published on Jun 9, 2026
  • 1 minute(s) read
Prev Next

Silent Push is a preemptive cyber defense platform that provides threat intelligence through data enrichment. The Bulk Enrichment feature allows users to efficiently process multiple indicators (domains and IPv4 addresses) at once, enriching them with comprehensive threat context.

Core Purpose: Parses out domain and IPv4 indicators and enriches them with up to 100+ categories of intelligence, including risk scoring, origin, web content, certificates, passive DNS, geographic data, and more.

What is Bulk Enrichment?

Bulk Enrichment is a powerful tool designed for security analysts, threat hunters, and incident responders. It enables processing of up to 100 indicators simultaneously, delivering detailed enrichment data in a single operation. This is ideal for high-volume investigations, automated workflows, or batch analysis of suspicious IOCs.

Supported Inputs

  • Domains (e.g., example.com, suspicious-domain.net)

  • IPv4 Addresses (e.g., 192.0.2.1, 8.8.8.8)

Note: Enter one indicator per line in the input field. The tool automatically detects and parses domains and IPv4 addresses.

How to Use Bulk Enrichment

  1. Navigate to Insight > Bulk Enrichment in the Silent Push platform.

  2. In the Query Form, paste your list of domains or IPs into the Input field.

  3. Click Submit.

  4. Review the enriched results in the Results section (with tabbed views for easy navigation).

Key Enrichment Data Provided

Data Category

Examples of Enriched Information

Basic Information

Creation date, registrar, WHOIS data, nameservers, Tranco Rank

Risk & Reputation

Risk scoring, dynamic domain indicators (e.g., DGA), URL shortener flags

Technical Details

Passive DNS, certificates, geographic location, ASN info

Web Content

Headers, hash values, on-page data, live scan results

Threat Context

Live threat feeds, associated infrastructure, behavioral fingerprints

Customizable Output Fields

You can fully customize which data fields are returned in your Bulk Enrichment results. Using the Column Selector at the top of the Results section, simply check or uncheck the categories and specific fields you want to include (e.g., Risk Score, Passive DNS, Certificates, Web Content, etc.). This allows you to tailor the output to your exact workflow needs and reduce unnecessary data volume.

Benefits of Bulk Enrichment

  • Save significant time compared to individual lookups

  • Support for automated workflows and API integration

  • Deeper context than standard DNS or WHOIS queries (up to 10x more)

  • Helps identify attacker infrastructure before it's weaponized

  • Tabbed, organized results with PADNS (Passive DNS) lookups

Use Cases

  • Batch processing of phishing campaign domains

  • Enriching large lists of suspicious IPs from logs

  • Threat hunting and infrastructure mapping

  • Incident response triage

Related articles