AI Tools Blocklist
Home AI Tools Database Taxonomy Pricing
Solutions
Enterprise IT & CISO Education Firewall Admins Shadow AI Prevention
Integrations
Palo Alto Networks FortiGate Cisco Umbrella pfSense REST API
Download Free Sample
OEM Domain Feed

The AI Domain Feed Built
for Security Product Vendors

Your customers expect an AI-blocking category inside your product. We deliver 16,024+ classified domains across 18 categories, in nine formats, updated daily and licensed for OEM redistribution.

16,024+AI Domains
18Categories
9Output Formats
DailyFeed Updates
Request OEM Feed Access View Pricing
Market Demand

Why Security Vendors Need a Dedicated AI Domain Feed

Every DNS filter, SWG, and NGFW ships with content categories — gambling, adult, malware, phishing, social media. AI tools are the first major new category since the smartphone era.

Your Customers Are Already Asking

Enterprise Buyers Need to block, monitor, or selectively allow AI-tool access across their workforce.
K-12 School Districts Expect AI blocking as a native category in their existing security stack — no separate point solution.
Healthcare & Government Require granular control over AI-tool access for compliance and data-protection mandates.

Why Building In-House Is Costly

The AI-tool landscape is not a static list of a few dozen services. It spans tens of thousands of domains across chatbots, code generators, image synthesizers, voice cloners, and more.

New domains appear daily as startups launch, established companies add AI features, and open-source projects deploy hosted instances.

What In-House Classification Requires

Continuous scanning of newly registered domains
Content-based classification pipelines with ML engineers
Verification stages to control false positives
A taxonomy distinguishing chatbots from grammar checkers from code assistants
Daily operational maintenance — a full data-engineering operation, not a side project

Build vs. Buy

Build In-House

Hire ML engineers and stand up infrastructure
Source domain registration feeds
Commit to daily operational maintenance
All for a single content category

Buy from Us

Feed arrives in your preferred format
Maps to your existing category engine
Integration in under two weeks
16,024+ domains with 18 subcategories from day one

OEM partners typically ship the AI-blocking category in their next release cycle. Customers see a new "AI Tools" category in the policy dashboard — complete with granular subcategories.

Build vs. Buy at a Glance

6–12 mo
Build in-house timeline
<2 wks
OEM feed integration
$500K+
Annual in-house cost
102M
Our scanning corpus
Format Flexibility

Feed Formats and Delivery Options

Security products vary in how they ingest domain intelligence. We deliver the same classified data in nine formats — no conversion middleware needed.

Supported Output Formats

Format Use Case Target Product
JSONFull metadata per domainSWGs, endpoint agents, custom apps
CSVSpreadsheet-compatible toolingLegacy proxies, manual import
RPZResponse Policy Zone filesBIND, Knot, PowerDNS Recursor
HostsOS-level blocking agentsEndpoint agents, sysadmin scripts
Plain-text domain listOne domain per lineFirewalls, proxies, EDLs
BIND zoneFull zone file formatBIND DNS servers
dnsmasqdnsmasq config formatdnsmasq-based resolvers
Unboundlocal-zone formatUnbound DNS resolvers
SURBLSURBL-compatible listsAnti-spam and URL filtering

Each format includes the same underlying data. Domain coverage, categorization, and confidence scores are consistent across all outputs.

// JSON format — full metadata per domain
{
  "feed_version": "2.1",
  "generated": "2026-07-09T06:00:00Z",
  "total_domains": 42847,
  "domains": [
    {
      "domain": "chat.openai.com",
      "primary_category": "Text & Language",
      "subcategory": "General Assistants & Chatbots",
      "confidence": 0.99,
      "risk_tier": "high",
      "data_handling": "cloud-processed",
      "first_seen": "2023-01-15",
      "last_verified": "2026-07-09"
    },
    {
      "domain": "midjourney.com",
      "primary_category": "Image & Visual",
      "subcategory": "Image Generation",
      "confidence": 0.98,
      "risk_tier": "high",
      "data_handling": "cloud-processed",
      "first_seen": "2022-07-20",
      "last_verified": "2026-07-09"
    }
  ]
}

RPZ Format for DNS Resolvers

RPZ is the most operationally efficient option for DNS resolver vendors. Load the zone file directly into any RPZ-compatible resolver.

Wildcard Support RPZ includes wildcards — blocking openai.com automatically covers chat.openai.com, api.openai.com, and any future subdomains.
Zero Application-Layer Changes The resolver enforces NXDOMAIN or redirect actions natively at query time with no parsing needed.
; RPZ zone file — AI Tools Blocklist
; Generated: 2026-07-09T06:00:00Z
; Domains: 16,024+
; Load this as a response-policy zone in BIND or compatible resolvers

$TTL 300
@  IN  SOA  localhost. root.localhost. (
        2026070901  ; serial (YYYYMMDDNN)
        3600        ; refresh
        600         ; retry
        604800      ; expire
        300 )       ; minimum TTL
   IN  NS   localhost.

; Text & Language — General Assistants & Chatbots
chat.openai.com         CNAME .  ; block (NXDOMAIN)
*.chat.openai.com       CNAME .  ; wildcard subdomains
claude.ai               CNAME .
*.claude.ai             CNAME .
gemini.google.com       CNAME .
bard.google.com         CNAME .

; Image & Visual — Image Generation
midjourney.com          CNAME .
*.midjourney.com        CNAME .
leonardo.ai             CNAME .
*.leonardo.ai           CNAME .
API Access

REST API and Authentication

The feed is delivered through a RESTful API secured with Bearer token authentication. Every OEM partner receives a dedicated API key scoped to their license tier.

Four Primary Endpoints

1
Full Feed Initial ingestion or periodic full refreshes of the complete dataset.
2
Delta Endpoint Daily incremental syncs — only the records that changed since your last sync.
3
Single-Domain Lookup Real-time classification queries for on-demand domain checks.
4
Taxonomy Endpoint Complete category tree with stable identifiers for mapping to your internal categories.

All endpoints accept a format parameter — the same endpoint returns JSON, CSV, RPZ, or any supported format.

Authentication

Bearer Token Include your API key in the Authorization header. Keys are long-lived with no forced rotation schedule.
Key Regeneration Regenerate keys at any time from the partner dashboard.
Enhanced Security Options Mutual TLS and IP-allowlisting available on dedicated feed endpoints — contact our integration team.
# Full feed download — all domains with metadata
curl -s -H "Authorization: Bearer YOUR_OEM_API_KEY" \
  "https://api.aitoolsblocklist.com/v1/feed?format=json&status=active"

# Full feed filtered to a single category
curl -s -H "Authorization: Bearer YOUR_OEM_API_KEY" \
  "https://api.aitoolsblocklist.com/v1/feed?format=json&category=text-language&min_confidence=0.8"

# Delta update since a specific timestamp
curl -s -H "Authorization: Bearer YOUR_OEM_API_KEY" \
  "https://api.aitoolsblocklist.com/v1/feed/delta?since=2026-07-08T00:00:00Z&format=json"

# Single-domain lookup (real-time classification)
curl -s -H "Authorization: Bearer YOUR_OEM_API_KEY" \
  "https://api.aitoolsblocklist.com/v1/lookup/chat.openai.com"

# Download as RPZ zone file for DNS resolvers
curl -s -H "Authorization: Bearer YOUR_OEM_API_KEY" \
  "https://api.aitoolsblocklist.com/v1/feed?format=rpz&status=active" \
  -o /etc/bind/rpz/ai-tools.zone

# Taxonomy endpoint — stable category identifiers for mapping
curl -s -H "Authorization: Bearer YOUR_OEM_API_KEY" \
  "https://api.aitoolsblocklist.com/v1/taxonomy"

Rate Limits & Performance

Rate limits are designed for OEM workloads, not retail API consumers. All responses are gzip-compressed by default.

Lookup Endpoint

5,000 req/hr. Under 200 ms P95 latency.

Ideal for real-time DNS query enrichment on cache miss.

Full Feed

~18 MB gzipped. Under 8s P95 download time.

Use for initial ingestion and monthly consistency checks.

Delta Endpoint

Typically under 150 KB per day.

The backbone of daily sync operations.

Incremental Sync

Delta Updates, Webhooks, and Sync Architecture

The delta endpoint is the operational backbone of OEM integration. Request only records that changed since your last sync — no full download required.

What a Daily Delta Contains

A typical daily delta contains 50–500 domain changes. The response is structured into three arrays that map cleanly to database operations:

Added

New AI tools discovered by our classification pipeline, with full metadata. Maps to INSERT.

Modified

Domains whose category, confidence, or risk tier changed after product pivots. Maps to UPDATE.

Removed

Domains no longer classified as AI tools — shut down or changed purpose. Maps to DELETE.

Webhook Notifications

Prefer push over polling? Register a webhook URL in the partner dashboard.

Automatic Notification Our servers POST a notification within 15 minutes of each daily feed update completing.
Delta Summary Payload Includes counts of added, modified, and removed domains plus the timestamp for fetching the full delta.
HMAC-SHA256 Signed Payloads are signed with a shared secret so your receiver can verify authenticity before processing.

Consistency & Versioning

Idempotent Operations Requesting the same time range multiple times returns identical results. Failed syncs can be safely retried.
Feed Versioning Every response includes feed_version and generated timestamp for tracking.

Best Practice: Monthly Reconciliation

Run a full-feed consistency check once per month. Download the complete dataset, compare against your local category database, and reconcile any discrepancies from missed deltas, partial syncs, or database corruption.

#!/bin/bash
# OEM sync script — runs daily via cron at 06:30 UTC
# Fetches delta, applies changes to local category DB, updates checkpoint

set -euo pipefail

API_KEY="YOUR_OEM_API_KEY"
API_BASE="https://api.aitoolsblocklist.com/v1"
STATE_DIR="/var/lib/your-product/ai-feed"
LAST_SYNC=$(cat "$STATE_DIR/last-sync.txt")

# Fetch delta since last successful sync
curl -sf -H "Authorization: Bearer $API_KEY" \
  "$API_BASE/feed/delta?since=$LAST_SYNC&format=json" \
  -o "$STATE_DIR/delta.json"

# Parse counts for logging
ADDED=$(jq '.added | length' "$STATE_DIR/delta.json")
MODIFIED=$(jq '.modified | length' "$STATE_DIR/delta.json")
REMOVED=$(jq '.removed | length' "$STATE_DIR/delta.json")

# Apply additions and modifications to category database
jq -r '(.added + .modified)[] | [.domain, .primary_category, .subcategory, .confidence, .risk_tier] | @csv' \
  "$STATE_DIR/delta.json" | category-db-import --category=ai-tools --upsert

# Remove deactivated domains
jq -r '.removed[].domain' "$STATE_DIR/delta.json" \
  | category-db-remove --category=ai-tools

# Update sync checkpoint
jq -r '.timestamp' "$STATE_DIR/delta.json" > "$STATE_DIR/last-sync.txt"

echo "AI feed sync complete: +$ADDED ~$MODIFIED -$REMOVED domains"

# Monthly full-feed consistency check (runs on 1st of each month)
if [ $(date +%d) = "01" ]; then
  curl -sf -H "Authorization: Bearer $API_KEY" \
    "$API_BASE/feed?format=json&status=active" \
    -o "$STATE_DIR/full-feed.json"
  category-db-reconcile --category=ai-tools --source="$STATE_DIR/full-feed.json"
  echo "Monthly consistency reconciliation complete"
fi

API Version Stability

Current API Version: v1 Breaking schema changes ship under a new version (v2). The v1 endpoint continues for at least 12 months after v2 launches.
Non-Breaking Additions New optional fields, output formats, and expanded categories are added without a version bump. Your parsing logic won't break.
Reliability

SLA Guarantees and Data Quality Commitments

OEM partners embed our feed into products serving thousands of end customers. Feed downtime or data-quality issues propagate directly to your customer base.

Infrastructure Guarantees

99.9% Uptime SLA Measured monthly with automatic service credits for any month below threshold.
Geographically Distributed Automated failover to secondary nodes within 30 seconds — no client-side config change needed.

Data Quality Pipeline

Precision over recall — false positives generate support tickets and erode trust. Our multi-stage pipeline minimizes them.

1
Content Classification Classifiers operate on a 102-million-domain corpus to identify AI tools.
2
Functional Verification Checks for AI-specific indicators: API docs, model endpoints, NL input interfaces, SaaS pricing pages.
3
48-Hour Probation Newly classified domains wait 48 hours before appearing in the feed — catches errors before they reach partners.
99.9%

Uptime SLA

<0.1%

False Positive Rate

48hr

Probation Window

300K

Domains Scanned Daily

Confidence Scores

Score Range Evidence Strength Typical Domains
0.95 – 1.00UnambiguousDedicated AI tools with clear product pages, API docs, and user interfaces
0.80 – 0.94Solid with some ambiguityDual-purpose sites where AI is significant but not the exclusive feature
Below 0.80Excluded from feedInsufficient evidence to classify with production-grade confidence

Recommended Default: 0.80 Threshold

This provides the optimal balance between coverage and accuracy. If your product exposes the threshold as a customer-configurable parameter, end users gain fine-grained sensitivity control — a differentiating feature competitors with flat blocklists cannot offer.

Update Frequency

Guaranteed Daily Updates Feed updated at least once every 24 hours. Daily update completes by 06:00 UTC.
Twice-Daily in Practice Pipeline publishes at ~06:00 and ~18:00 UTC. Partners who sync twice daily get faster coverage of new tools.
Sub-Daily SLA Available Need four-hour update guarantees for a premium tier? Available under a dedicated feed agreement.
Licensing

OEM Licensing and White-Label Delivery

This is not a retail API subscription — it is a data-licensing agreement for vendors who embed the feed into commercial products.

What the OEM License Covers

Unlimited redistribution to your end customers — no per-seat or per-device fees
Customers see "AI Tools" as a native feature — they never interact with our API directly
No upstream provider visibility unless you choose to disclose it

White-Label Option

For partners who require complete brand separation:

Custom Feed Domain Served from your domain (e.g., feeds.yourproduct.com) with your TLS certificate.
Zero Upstream Branding No references to our brand in API responses, documentation, or metadata.
Identical Content Same domains, classifications, and update schedule — only delivery branding differs.

Pricing Model

Volume pricing is based on formats and update frequency — not your customer count. Growth is never penalized.

A partner needing JSON and RPZ with daily updates pays a fixed annual fee whether they serve 100 or 100,000 downstream customers.

Standard OEM License

Unlimited redistribution, all formats
Daily updates, 99.9% uptime SLA
No per-seat downstream fees
12-month term, dedicated onboarding

White-Label License

Everything in Standard
Custom domain + your TLS cert
No upstream branding anywhere
Dedicated isolated infrastructure
Integration Patterns

Integration Patterns by Security Product Type

Integration differs by product architecture. These patterns reflect what our most successful OEM partners have implemented across dozens of production deployments.

DNS Filtering Platforms

Consume the RPZ format. Load directly into BIND, Unbound, Knot, or proprietary resolvers.

Map our 18 categories to your internal IDs. Expose subcategories in dashboards for shadow-AI analytics.

Secure Web Gateways

Consume the JSON feed. Load into your URL classification DB alongside existing categories.

Leverage confidence scores, risk tiers, and data-handling flags for DLP integration.

Next-Generation Firewalls

Consume plaintext or EDL-formatted feeds. Palo Alto PAN-OS and FortiGate natively support external domain lists.

Category-specific feed URLs enable per-category security rules.

Endpoint Protection Agents

Distribute via your existing content-update channel. Enforce at the local DNS resolver, hosts-file, or browser-extension level.

JSON provides full metadata for local policy evaluation without network dependency.

Data Enrichment

Enrichment Fields That Power Granular Policies

A flat domain list tells your product whether a domain is an AI tool. Our enriched feed tells it what kind, how confident, how it handles data, and when it appeared.

Why Enrichment Matters

Category + Subcategory A school district can block AI chatbots while allowing AI-powered educational tutoring tools. Flat lists can't make this distinction.
Data Handling Flag A financial institution can block cloud-processed AI tools but allow locally-executed AI assistants.
First-Seen Timestamp Compliance teams can audit which AI tools are newest and least vetted. Auto-block tools under 30 days old.

Risk Tiers

Each domain is classified as high, medium, or low risk based on data-handling practices, input sensitivity, and content retention.

Risk Tier Description Examples
High Processes and stores freeform user content in the cloud Chatbots, code assistants, image generators accepting proprietary assets
Medium Cloud-processed but limited data retention AI search engines, summarization tools, translation services
Low Local processing or no input data retained AI spell-checkers, grammar tools, local classification models

Exposing risk tiers in your policy interface lets administrators create tiered policies without manually reviewing each tool.

Temporal Metadata

The first_seen and last_verified timestamps enable time-based policies and reporting.

Auto-Block New Tools

Block AI tools less than 30 days old — newly launched tools often have immature security practices and unknown data-handling policies.

Discovery Trend Reporting

Show the rate of new AI-tool discovery over time — correlates with the pace of shadow-AI adoption in your customers' workforce.

Ready to Add AI-Tool Intelligence to Your Product?

We provide a 30-day technical evaluation with full API access, all output formats, and a dedicated integration engineer. Most partners ship the AI-tools category within one release cycle.

Download Sample Feed View Plans

Request OEM Feed Access

Tell us about your security product and integration requirements. We will provide API credentials and a 30-day technical evaluation within 24 hours.