Skip to content
BlackHat Images 2026

WhoisXML API @ Black Hat USA 2026

August 4 - 6

Meet Us Where Things Are Happening: In Our On-Floor Meeting Room

We’re unveiling new exclusive intelligence — never shared publicly — in our private Meeting Room Lounge (BMR6403) at the Mandalay Bay Convention Center, steps away from the booth area.

Join our executive team for focused conversations tailored for product leaders shaping the future of cybersecurity.

Why Meet With Us

Exclusive Data Breakthroughs

Be the first to explore new intelligence we’ve never shared before — built to power the next wave of security innovation.

Real Conversations

Meet in a private, quiet space for focused, no-fluff discussions tailored to your product roadmap.

Beyond the Docs

See our latest APIs, enrichment layers, and tools in action with insights you won’t find in public documentation.

Don’t Miss This Out

We’re unveiling what’s next. If you’re not in the room, you’re not in the loop.

On-Demand Private Meetings

Speakers_Prancheta 1-1

Threat Research for the AI Era

🔬 A look inside the research with Ed Gibbs

Attackers are now using AI to spin up malicious domains and phishing infrastructure faster than teams can track them, and detection is only as strong as the data behind it. Ed shares how WhoisXML API surfaces that infrastructure early and turns it into the domain, DNS, and IP intelligence that keeps detection ahead of the curve, along with a candid look at what WhoisXML API is building next.

Attacking the World's Firewalls & The Pyongyang Piggyback  

🚀 This session follows two investigations: Internet-wide reconnaissance against enterprise firewalls, and North Korea's external Internet footprint, with Alex Ronquillo

Using observations from the WXA Internet Abuse Signal Collective (IASC), we'll show how global NetFlow sampling across major IXPs captured FortiBleed reconnaissance without relying on sinkholes or honeypots. You'll see:

  • Maps of FortiBleed reconnaissance as it crossed major Internet exchange points
  • NetFlow timelines showing attacker infrastructure expanding, shifting, and disappearing
  • Victimology cuts by ASN, country, industry, and exposed service
  • Campaign graphs linking scanners, targets, and reused infrastructure
  • Pivots from single scanner IPs to recurring attacker clusters
  • Device locations that contradict GeoIP, BGP, and WHOIS
  • A reconstruction of North Korea's Internet beyond its borders

From global firewall scanning to Pyongyang's piggybacked connectivity, this talk turns Internet abuse signals into evidence of attacker infrastructure, victim exposure, and hidden physical networks.

Speakers-02-1

WhoisXML API in Action

WhoisXML API delivers the domain, DNS, and IP intelligence trusted by cybersecurity teams building next-generation products. With over 15 years of experience and recognition from Inc. 5000 and the Financial Times, we support leading security companies, threat intel teams, and national security agencies worldwide. Our data powers detection, enrichment, attribution, and prevention at scale. We deliver much more:

28.7 billion+

historic WHOIS records

50 billion+

domains and subdomains

116 billion+

DNS records

10.6 million

IP netblocks, covering 99.5% of IPv4/IPv6

Meet with Our Experts

Our team of solution-focused professionals.

Charlie Chen BW-2

Charlie Chen

Technical Account Manager

David Varela BW-2

David Varela

Technical Account Manager
Hanna Frank BW

Hanna Frank

Technical Account Executive

Brendan Odoherty HS BW

Brendan O'Doherty

Technical Account Executive

Jonathan-Dewein-BW

Jonathan Dewein

Technical Account Executive

Tara Coneally BW-2

Tara Conneally

Enterprise Partnerships

LP photos_Prancheta 1

Joshua Ra

Director of Business Development
Alexandre Francois BW

Alexandre François

Director of Product Marketing

Ching BW

Ching Chiao

Head of APAC and Corporate Development

Jonathan Zhang BW

Jonathan Zhang

CEO

colleagues-discussing-with-each-other-office

Right There on the Floor, Ready for Real Conversations

Our dedicated space is right on the event floor, just steps from the booth area, room BMR6403 — no hassle, free from the noise and private.

Step into a comfortable setting for real conversations with our team — from new data capabilities to what’s coming next from WhoisXML API. It’s your space for clarity, strategy, and connection just around the corner.

mandalay-bay

Mandalay Bay Convention Center

 

Meet us There

Whether you're aiming to strengthen your intelligence workflows, explore WhoisXML API’s capabilities, or dive into specific challenges your team is facing, this is your chance to speak directly with our executives during BlackHat USA 2026.

We’ll be in Las Vegas on Tuesday, Wednesday, and Thursday. Submit the form to schedule an insightful, private conversation.