RPZDB protects every device on your network from malware, phishing, and botnets — at the DNS layer. No software to install. No endpoints to manage. Just point your resolver and you're protected.
Simple & Powerful
Every internet connection starts with a DNS lookup. RPZDB intercepts dangerous lookups before any connection is made — protecting your entire network in milliseconds.
User Device
Wants to visit a website
DNS Query
"Where is evil.com?"
RPZDB Check
Is it a known threat?
User sees a block page
Normal resolution
All of this happens in <1 millisecond — before any data leaves your network.
Enterprise Features
RPZDB goes far beyond static domain blocking. It aggregates, scores, and distributes threat data in real time.
Aggregates intelligence from global sources — malware trackers, phishing databases, botnet C&C lists, cryptojacking, and more. Automatically deduplicated and scored.
Watches Certificate Transparency logs to detect phishing sites the moment they get an SSL certificate — often before the attack even starts.
DGA detection catches algorithmically-generated botnet domains. Typosquatting engine protects your brand. NRD quarantine blocks newly registered suspicious domains.
Filter by category: gambling, adult content, social media, streaming, crypto, and more. Perfect for schools, workplaces, and family networks.
See what's being blocked in real time. Top blocked domains, threat categories, query volume, and trends. Export to SIEM via API.
Create your own allow/block lists. Set policies per organization, network, or location. Override any feed decision with one click.
Full API for lookups, bulk checks, and feed management. DNS-over-HTTPS endpoint for secure client configuration. Webhook notifications.
Receive threat data via standard zone transfers to your own resolvers. TSIG-authenticated. Incremental updates every 5 minutes. Your data stays yours.
Managed service providers and ISPs can serve multiple customers from one platform. Each tenant gets their own policies, analytics, and API keys.
Built For Everyone
Free tier blocks malware and adult content at home. Protect every phone, tablet, laptop, and IoT device — just change your router's DNS.
CIPA-compliant content filtering. Protect students from harmful content. Built-in reporting for auditors. Category-based policies per network.
Integrate into your security stack alongside SIEM, EDR, and firewalls. API-driven. Custom threat feeds. SLA-backed uptime. Dedicated support.
Protect millions of subscribers. Multi-tenant isolation. Custom national policies. Regulatory compliance reporting. Dedicated infrastructure.
What We Block
Architecture
From a single home network to a national ISP protecting millions — RPZDB scales to any deployment.
Why RPZDB
| Feature | RPZDB | Free Resolvers | Feed Providers | Enterprise DNS Security |
|---|---|---|---|---|
| Custom block/allow lists | ✓ | ✗ | ✗ | ✓ |
| 80+ content categories | ✓ | ✗ | ✗ | ✓ |
| Zone transfer to your resolvers | ✓ | ✗ | ✓ | ✗ |
| Real-time CT log monitoring | ✓ | ✗ | ✗ | Some |
| DGA & typosquat detection | ✓ | ✗ | ✗ | ✓ |
| Multi-tenant / ISP support | ✓ | ✗ | ✗ | Limited |
| Analytics dashboard | ✓ | ✗ | ✗ | ✓ |
| Data stays on your infra | ✓ | ✗ | ✓ | ✗ |
| Free tier | ✓ | ✓ | ✗ | ✗ |
Start blocking malware, phishing, and botnets in under 5 minutes. No hardware. No software. Just DNS.