API Documentation
Integrate real-time threat intelligence into your security workflows
Threat Radar API v1
The Threat Radar API provides programmatic access to real-time threat intelligence data from multiple sources. Integrate threat monitoring, vulnerability scanning, and security alerts directly into your applications, SIEM systems, or security workflows.
Quick Start
- Register for an account at radar.offseq.com/console
- Verify your email address
- Get your API key from the verification response or welcome email
- Complete your profile to manage the API key in the Console
- Activate a Basic/Pro/Enterprise plan or Pro Console Lifetime Access in Console -> Billing to enable API calls
- Start making API requests with your key
Base URL
https://radar.offseq.com/api/v1Response Format
application/jsonFeatures
- Real-time threat intelligence from multiple sources
- CVE vulnerability data with enriched metadata
- IoC (Indicators of Compromise) checking
- Product, vendor, and version-level monitoring
- Geographic threat distribution data (structured + AI-identified)
- RESTful API with JSON responses
- API access for Basic/Pro/Enterprise subscriptions or Pro Console Lifetime Access
- Rate limiting for Basic, Pro, and Enterprise tiers
What you can filter on
GET /threats supports 19 filter parameters plus aliases. Highlights:
- Identifier normalization —
2025-1974=cve-2025-1974=CVE-2025-1974 - Fuzzy version match — finds
affectedVersions=1.24.0even in unstructured news/Reddit posts - Multi-value —
tag=a,borseverity=critical&severity=high - CVSS range —
minCvss=9.0 - Exploitation & patch flags —
hasExploits=true,hasPatch=true - Date windows —
publishedAfter+publishedBeforeordays=7 - CWE filtering —
cwe=787 - Diagnostic headers — typos surface in
X-Unknown-Params
See the for the complete reference, or hit GET /api/v1/threats/filters for a machine-readable catalog.