Free Community Edition available

Your firewall is only as good as its intel.

Real-time threat intelligence feeds and IP reputation feeds for FortiGate, OPNsense, Sophos, Palo Alto & Check Point firewalls. Block malicious IPs, domains, and URLs before they reach your network. Suricata rules, STIX/TAXII feeds, and blocklists ready in under 5 minutes.

Start 7-Day Free Trial View Pricing

7-day free trial — no credit card required

2,500+
Threat sources curated
20 min
Update frequency (Premium)
< 5 min
Setup time
EU
Made & hosted in Europe

Easy integration with your firewall

Palo Alto Networks Check Point OPNsense Fortinet Sophos
Setup in under 5 minutes
Q-Feeds threat intelligence dashboard

Why Q-Feeds

Enterprise threat intelligence.
Homelab-friendly pricing.

Real-time IP Reputation Feeds

Continuously updated IP blocklists of malicious addresses. Botnets, C2 servers, scanners, and brute-force attackers blocked automatically on your FortiGate, OPNsense, or Sophos firewall.

Domain & URL Blocklists

Malicious domains and URLs used for phishing, malware distribution, and command & control. Direct import into your firewall or DNS resolver. Compatible with Suricata rules for OPNsense IDS/IPS.

TAXII Server & STIX Format

Standards-based cyber threat intelligence sharing. Integrate with any TAXII-compatible SIEM, SOAR, or threat intelligence platform. Indicators of compromise (IOCs) in industry-standard format.

EASM & Darkweb Monitoring

External attack surface management shows what attackers see. Darkweb monitoring alerts you when your credentials or domains appear on underground forums.

2.4M
Malicious IPs tracked
1,200+
Firewalls protected
2,500+
Threat intel sources
15
Minute update cycle

Pricing

No enterprise sales calls.
Just pick a plan.

All plans include support for Fortinet, OPNsense, Sophos, Palo Alto & Check Point. Cancel anytime.

Community
Free forever
No credit card required
  • OSINT threat intelligence feeds
  • Data updated with 24-hour delay
  • All firewall integrations
  • 7-day premium trial included
  • Community support
  • Setup documentation
Get Started Free
Plus
€99 /year
Less than €8.25/month
  • Everything in Community
  • Data updated every 4 hours
  • Commercial (paid) threat data
  • Dark web monitoring
  • Threat lookup for detection context
  • Weekly vulnerability scanner
  • External attack surface management
Start 7-Day Free Trial
Premium
€249 /year
For serious security operations
  • Everything in Plus
  • Real-time feed updates (15 min)
  • Commercial DNS threat data
  • Daily vulnerability scanner
  • Brand protection + takedowns
  • Priority support
Start 7-Day Free Trial

Don't take our word for it

Customer References

How It Works

Three steps. Five minutes. Threats blocked.

01

Create Your Account

Sign up and choose your plan. Community edition is free forever — no credit card, no time limit, no catches.

02

Configure Your Firewall

Follow our step-by-step guide for your specific firewall. Copy the feed URL, paste it in your config. Guides for FortiGate, OPNsense, Sophos, Palo Alto and more.

03

Threats Blocked Automatically

Your firewall now blocks known malicious IPs, domains, and URLs automatically. Feeds update in the background — set and forget.

FAQ

Frequently Asked Questions

What firewalls does Q-Feeds support?

Q-Feeds integrates with FortiGate, OPNsense, Sophos, Palo Alto Networks, and Check Point firewalls. Each integration has a dedicated step-by-step setup guide. Configuration takes under 5 minutes.

How do I set up threat feeds on my FortiGate?

Create your Q-Feeds account, copy the feed URL from your dashboard, and paste it into FortiGate under External Connectors > Threat Feeds. The entire process takes under 5 minutes.

Does Q-Feeds support Suricata rules for OPNsense?

Yes. Q-Feeds provides Suricata IDS/IPS rules that you can import directly via OPNsense > Services > Intrusion Detection > Rules. Rules are updated automatically with your subscription.

What is the difference between Community and Plus?

Community is free forever and includes OSINT-based threat feeds updated every 24 hours. Plus adds commercial threat data, 4-hour updates, dark web monitoring, and EASM for EUR 99 per year.

How often are the threat feeds updated?

Community: every 24 hours. Plus: every 4 hours. Premium: every 15 minutes. All updates happen automatically once your firewall is configured.

What is EASM and dark web monitoring?

EASM continuously scans your internet-facing assets to show what attackers can see. Dark web monitoring alerts you when your credentials appear on underground forums. Both are included in Plus and Premium plans.

Stop guessing.
Start blocking.

Built by security engineers, for security engineers. Join 1,200+ FortiGate, OPNsense, and Sophos firewalls already running Q-Feeds threat intelligence feeds.

Start Your Free Trial
No credit card required 7-day free trial Cancel anytime EU data processing