whois client for parsing domain creation date and registrar
WHOIS Client and Domain Creation Date Parser
This is a simple
WHOIS domain registry client focused around parsing a domain's
Creation Date and
WHOIS domain records.
This package is geared towards preventing fraud and abuse. The age of a domain has many applications in abuse prevention and fraud detection.
Spammers often register on sites using newly created domains. Being able to quickly identify the age of a domain has
numerous applications in fighting fraudulent activity. Similarly, the Registrar name of a domain can be very useful in fighting fraud by
allowing an organization to implement blacklisting functionality of known fraudulent
This package maintains a list of domain extension to
WHOIS server mappings. Using these servers and a
rule based parsing schema this package will provide you with the domain creation date of nearly any website.
The motivation behind this package was that many of the
WHOIS clients available spawning child processes calling
the Debian WHOIS package.
This is a security vulnerability when working at an enterprise level.
Suppose a spammer decides to register with an email address such as,
elliot@;rm -rf /* testing a domain such as
rm -rf /* with a Unix child process can allow a hacker to delete your entire system or worse.
By using a direct socket connection to the proper WHOIS server based on the domain extension this package is able to achieve greater security than other available clients.
This package does not rely on
WHOIS.iana.org redirection as many other WHOIS packages do.
Rather, this package maintains a direct mapping of domain extensions to servers allowing you to query for
domain creation age through a single request.
This is a major improvement of runtime in relation to other WHOIS packages.
pip install domain_validation
pip3 install domain_validation
The expected use case is for finding the creation date of a domain:
from domain_validation.whois import WHOIS whois = WHOIS("google.com") assert str(whois.creation_date()) == "1997-09-15" assert whois.registrar() == "MarkMonitor Inc." whois = WHOIS("yo.cn") assert str(whois.creation_date()) == '2003-03-17' assert whois.registrar() == '浙江贰贰网络有限公司'
What makes this different from other WHOIS clients?
This engine does not rely on
WHOIS.iana.org server redirect, rather it maintains it's own domain extension to server
mapping which makes query time faster. Furthermore, it does not rely on the the Debian WHOIS package, meaning it will not
spawn a child process and use the Debian Package like other packages.
Rather it uses a direct socket connection to the exact WHOIS server for the given domain extension making it secure and fast.
Why would I use this?
Perhaps you are a small business or an enterprise organization facing fraudulent activity through spammy account sign-ups.
One signal representing the validity of an email domain is the age of the domain. This package will allow you to query for the
age of nearly any domain from and domain extension, securely and rapidly within the safety of a Python environment (no child proccess).
Furthermore, if you are using a rule based fraud system, this package provides you with
Registrar information allowing you to maintain a
blacklist of Registrars which you have found to be fraudulent.
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Hashes for domain_validation-1.6.4-py3-none-any.whl