Cybersecurity

WHOIS Summary

Look up domain registration information including registrar, creation date, expiration, and name servers. Educational tool for understanding domain ownership.

Estimated time: 1-2 min
Difficulty level: Beginner
All Cybersecurity tools
5000ms CPU256MB RAM64KB in · 256KB outEducational, no sensitive data
Mode

Uses RDAP, the modern replacement for WHOIS. Some fields may be redacted due to privacy rules and registry policy.

Export

Download results as PDF, CSV, or JSON.

Run the tool to enable exports.

Understanding RDAP and WHOIS

What is RDAP?

RDAP is the modern HTTP and JSON service used by many registries to publish domain registration data. It replaces the older WHOIS protocol. Privacy rules and registry policy can redact or limit what is returned.

Common registration fields

  • • Registrant details, often redacted
  • • Registrar name
  • • Creation date and expiry date
  • • Nameservers used by the domain

Security Use Cases

  • • Verify domain ownership for phishing investigations
  • • Check domain age (new domains may be suspicious)
  • • Identify potentially malicious infrastructure
  • • Investigate brand impersonation attempts
  • • Track domain registration patterns

Privacy Considerations

Many domain owners use privacy services that hide personal information.

  • • GDPR has limited EU registrant data exposure
  • • Privacy proxies mask owner contact details
  • • Some TLDs require accurate public WHOIS data
  • • Investigators may need legal process for hidden data