--- title: "Endpoints of Threat Check API" slug: "threat-check-api-endpoints" updated: 2026-01-26T19:17:40Z published: 2026-01-26T19:17:40Z canonical: "help.silentpush.com/threat-check-api-endpoints" --- > ## Documentation Index > Fetch the complete documentation index at: https://help.silentpush.com/llms.txt > Use this file to discover all available pages before exploring further. # Endpoints of Threat Check API Customers use the Threat Check API endpoint to determine whether an IP address or hostname is listed on a Silent Push Indicators of Future Attack (IOFA™) feed. The API follows the OpenAPI 3.1 specification and returns JSON responses for both successful checks and error conditions. ## Base URL `https://api.threatcheck.silentpush.com/v1/` ## Check if an Indicator is Listed - **Endpoint:**`GET /v1/` - **Description:**Check if the specified indicator is on an IOFA Feed. - **Response:**JSON response containing a Boolean value. ### Query parameters | Parameter name | Parameter type | Description | Example | | --- | --- | --- | --- | | `t` | String | Type of indicator | `name` `ip` | | `d` | String | Type of data. The default is `iofa`. | `iofa` | | `u` | String | Unique identifier of the organization that is making the request (Access Key found in the app’s Subscription page) | [insert example key] | | `q` | String | IP address or hostname that the organization is investigating. | [insert example] | ### Example Request `GET /v1/?t=ip&d=iofa&u=12345&q=192.168.1.10` `Host: api.threatcheck.silentpush.com` ### Successful Response When the query is successful, the API returns the following response: - **HTTP Status Code:** `200 OK` - **Response Body Example:** ```plaintext {  "query": "192.168.1.10",  "is_listed": true,  "listed_txt": "This IP is on the IOFA feed." } ``` | Parameter name | Parameter type | Description | | --- | --- | --- | | `query` | String | Echoes the provided indicator. | | `is_listed` | Boolean | Indicates if the indicator is on an IOFA feed. | | `listed_txt` | String | Provides additional context. | ### Error Responses When the query is unsuccessful, the API will return one of the following errors: **HTTP status code:** `400 Bad Request` ```plaintext {  "error": "The request parameters are missing or invalid." } ``` **HTTP status code:** `422 Unprocessable Entity` ```plaintext {  "detail": [    {      "loc": ["query", 0],      "msg": "Value is not a valid IP address.",      "type": "value_error"    }  ] } ``` An API endpoint for performing real-time lookups of threat indicators, such as IPs or domains, to assess risk and integrate with security tools.