NetSight beta
IP
Privacy

Privacy

NetSight is a set of public lookup tools. No signup, no advertising cookies, no selling of query data. This page describes precisely what is processed and where.

What we store

  • Short-term cached lookup answers (IP geo, DNS, reputation) to reduce load on upstream providers. Cache entries expire between 30 minutes and 24 hours.
  • Anonymous edge-level request metrics for capacity planning. No identifiers, no per-user history.

What we don't store

  • Your identity. There is no account.
  • Historical logs that link a query back to you.
  • Tracking pixels, third-party advertising trackers, or analytics beyond first-party Plausible (see below).

Analytics

We use a self-hosted instance of Plausible Analytics for aggregate visitor metrics. Plausible does not use cookies, does not collect IP addresses or user agents in a way that allows individual identification, and does not share data with third parties.

Upstream services

When you run a lookup, the query may be forwarded to external providers and may be logged under their respective privacy policies. We use:

  • IP geolocation: ipapi.co, ipgeolocation.io, MaxMind
  • Reputation and abuse: AbuseIPDB, Scamalytics
  • Threat intelligence: VirusTotal, URLhaus, ~30 public DNSBLs
  • Network exposure: Shodan
  • Domain data: Cloudflare DNS-over-HTTPS, RDAP servers, Certificate Transparency logs (crt.sh), AlienVault OTX
  • Maps: Mapbox (only loaded when the IP-lookup map is rendered)

Our own honeypot data

We operate a research honeypot infrastructure (SSH, VNC, HTTP, Modbus, S7) that records unsolicited connection attempts to decoy services we own. The resulting database of attacker IP addresses is one input to the reputation scoring shown in the IP lookup. No queries you submit to NetSight ever leave the lookup pipeline; the honeypot data flows the other way - inbound attacker IPs only.

Cookies

NetSight sets no cookies of its own. Some upstream APIs (Mapbox, when the map is rendered) may set their own; these are governed by their respective policies.

Hosting

The site is served from Cloudflare's global edge network. Cloudflare may log standard request metadata (timestamp, IP, path) for security and DDoS protection per their privacy policy.

Your rights (GDPR / DSGVO)

If you are in the EU/EEA: you have the right to access, rectify, and delete personal data we process about you. Since we do not store identifying information about visitors, in practice there is rarely anything to access or delete. Requests can be sent to hey@mutebefehl.de.

Changes

If we materially change how data is processed, this page will be updated. The page itself is part of the public site and is versioned with the rest of the codebase.

Contact

Questions about privacy: hey@mutebefehl.de