Open Source

Built in the open.

Our Rust-powered scanning engine is fully open source. Audit every line, self-host the stack, or contribute to the community.

AGPL-3.0
License
Rust
Language
14K+
Lines of Code
22
Feed Modules
60+
Data Sources
24h
Self-Heal Time

Scanner Pipeline

1
IP Backbone

~700K CIDR ranges from iptoasn.com + 5 RIR delegation files + BGP routes

2
Threat Feeds

22 feeds in 8 parallel groups: datacenters, Tor, blocklists, VPNs, proxies, abuse.ch, crawlers

3
Active Scanning

rDNS, RDAP/WHOIS, and 109-port protocol probing (50 concurrent)

4
Geo-Triangulation

RIPE Atlas pings from 10 countries to verify claimed location

5
Confidence Decay

TTL-based expiration — stale flags auto-expire after 7-30 days

6
Cleanup

Remove redundant rows. Database self-heals from public feeds in ~24h

Self-Hosting

Deploy with Docker in minutes. Minimum: 512MB RAM, 1 vCPU, 10GB disk. Includes PostgreSQL and Redis via Docker Compose.

git clone https://github.com/xhusnain/geoiphub-core.git
cd geoiphub-core && cp .env.example .env
docker compose up -d

Contribute

Report issues, submit PRs, or join the community discussion.

Star on GitHub Join Discussions