ASN information for IP addresses

Updated
  • Updated on Aug 14, 2025
  • Published on Apr 11, 2023
  • 1 minute(s) read
Prev Next

An ASN is a unique identifier assigned by the Internet Assigned Numbers Authority (IANA) to a network operator that controls a block of IP addresses.

Threat actors often use multiple IP addresses and domains to carry out their attacks. ASN information allows security analysts to group these disparate elements into larger networks or organizations, helping to identify patterns of behavior and to attribute attacks to specific threat actors or groups more accurately.

Incorporating ASN information into threat intelligence management allows security teams to understand better the nature and scope of threats facing their organization and take more effective measures to defend against them.

ASN Information

  1. Navigate to Advanced Query Builder > IPv4 Queries > History Information - Bulk Usage.

  2. Enter a list of IPs and dates (one per line).

  3. Click Search; results are displayed in descending order.

Save queries

Organizational users can save queries for future use or sharing.

  1. Specify query parameters.

  2. Click Save Query.

  3. Provide a Name and Description for context.

  4. Click Save. The query appears in Private Queries.