Reconeer API Documentation

Passive domain reconnaissance data for security research, automation, and scale.

What is Reconeer?

Reconeer provides passive reconnaissance data for domains, subdomains, and IP addresses. All data is sourced from previously observed infrastructure — no brute-force, no DNS guessing, and no active probing.

Reconeer is designed for:

Bug bounty hunters
Security researchers
Recon pipelines & automation
Tools like Subfinder

API Endpoints

Get domain intelligence

GET /api/domain/{domain}

Returns passive subdomains, IPs, counts, and metadata.

curl https://reconeer.com/api/domain/example.com

Get IP intelligence

GET /api/ip/{ip}

curl https://reconeer.com/api/ip/8.8.8.8

Get subdomain details

GET /api/subdomain/{subdomain}

curl https://reconeer.com/api/subdomain/sub.example.com

Authentication

Reconeer currently allows unauthenticated access for evaluation and testing.

An optional API key may be supplied:

X-API-Key: your_api_key_here

API keys are currently used for rate-limit isolation and automation workflows.

Rate Limits

To ensure platform stability, fair-use rate limits are applied.

100 requests per 15 minutes
Applied per IP address + API key

When exceeded, the API responds with:

HTTP 429 Too Many Requests

Why Subscribe?

Reconeer subscriptions are designed for users who rely on continuous reconnaissance and automation.

Higher throughput for pipelines
Reliable automation at scale
Priority access as the platform evolves
Long-term stability guarantees

If Reconeer becomes part of your workflow, a subscription ensures speed, consistency, and scale.

👉 View pricing plans

Tooling & Source

Reconeer is a passive-only data source and is safe for continuous use in automated tooling.

Source code & examples: GitHub Repository