About abuse.mom
Real-time threat intelligence & abuse reporting platform
What We Do
abuse.mom is an independent threat intelligence platform that monitors, detects, and publicly reports malicious IP addresses targeting web applications worldwide. Our system operates 24/7, analyzing real-time traffic patterns to identify vulnerability scanners, brute-force attackers, spam bots, and other automated threats.
How It Works
Real-time Detection — Our sensors monitor web traffic across multiple domains, identifying malicious patterns including vulnerability scanning, brute-force attempts, spam submissions, and suspicious crawling.
Threat Analysis — Each IP is scored using attack frequency, severity, geographic patterns, and enrichment data from Shodan InternetDB and DNSBL blacklists.
Public Reporting — Detailed threat reports are published for every malicious IP with geolocation, ISP info, open ports, CVEs, and blacklist status.
Abuse Notifications — We actively notify hosting providers about malicious activity, providing evidence-backed reports with direct links.
How We Help
Website Owners — Check if IPs have a history of malicious activity. Use our data for blocklists.
Hosting Providers — Receive detailed abuse reports about compromised servers for faster incident response.
Security Researchers — Access structured threat intelligence including open ports, CVEs, and behavioral patterns.
The Internet — By publicly documenting abuse, we contribute to a safer internet.
Platform Statistics
Contact
For abuse reports, data inquiries, or partnerships:
Email: abuse [at] abuse.mom