ContrastAPI — Security Intelligence for VS Code

25 security tools in your editor. CVE lookup, domain recon, IP reputation, IOC analysis, code security scanning — all free, no API key required.

Features

25 Security Tools in 6 Categories

• Domain Intelligence — Domain report, DNS, WHOIS, SSL, subdomains, tech fingerprint, threat intel, wayback archive, headers, email MX
• Contact Validation — Disposable email check, phone lookup, username OSINT (16 platforms)
• IP Intelligence — IP geolocation & reputation, ASN lookup
• CVE Intelligence — CVE lookup, search by product/severity, exploit lookup
• Threat Intel / IOC — IOC lookup, hash lookup, password breach check, phishing URL check
• Code Security — Secret detection, injection vulnerability check, HTTP header analysis

Smart Context Menu

Select any text in your editor, right-click → ContrastAPI: Lookup. The extension auto-detects:

• CVE-2024-3094 → CVE Lookup
• 8.8.8.8 → IP Lookup
• d41d8cd9... → Hash Lookup
• https://... → Phishing Check
• example.com → Domain Report

How It Works

1. Open the ContrastAPI panel in the Activity Bar
2. Click any tool → enter your query
3. Results appear in a formatted panel beside your editor

No API key needed. Free tier: 60 requests/hour. Status bar shows remaining quota.

Requirements

• VS Code 1.82+
• Internet connection

Extension Settings

• contrastapi.baseUrl: API server URL (default: https://api.contrastcyber.com)

API Key (Optional)

For higher rate limits, get a key at contrastcyber.com and set it via:

• Command Palette → ContrastAPI: Set API Key
• Or click the status bar item

Links

• API Documentation
• GitHub
• Website

License

MIT