System Status

Real-time health of vspam.org services and processing pipeline.

Partial Service Disruption

Infrastructure

Web Portal

Frontend application (vspam.org)

Checking...

REST API

Core API server (api.vspam.org)

Checking...

Database

PostgreSQL 15 — IOC storage

Checking...

Cache

Redis 7 — rate limiting & sessions

Checking...

Object Storage

MinIO — screenshot & evidence storage

Checking...

DNSBL

PowerDNS Recursor — DNS blocklist

Checking...

Processing Pipeline

Verdict Engine

Community consensus evaluation — confirms or rejects reports based on weighted votes from trusted, contributor, and new reporters

Operational

AI Analysis

Automated threat scoring — URL heuristics, domain age analysis, DNS enrichment, phishing pattern detection

Operational

WHOIS/DNS Enrichment

Background worker — auto-lookups registrar, DNS records, hosting info for every submission

Operational

Feed Generator

STIX 2.1, CSV, JSON feed generation — rebuilds periodically from confirmed IOCs

Operational

DNSBL Zone Sync

RPZ zone file generator — syncs confirmed domains to PowerDNS blocklist

Operational

Credit System

Reputation engine — awards points for submissions, votes, and accurate reports

Operational

Stale Report Cleanup

Background worker — removes or archives reports with no community activity after extended inactivity periods

Operational

Verdict Engine

The Verdict Engine evaluates community votes using a weighted consensus algorithm. Reports are automatically confirmed or rejected based on the following thresholds:

Condition	Result
1 Trusted reporter confirms	Confirmed Phishing
2 Contributor+ reporters confirm	Confirmed Phishing
3 community members confirm	Confirmed Phishing
1+ confirms (below threshold)	Under Review
Majority rejects (2+ total votes)	False Positive

AI Analysis Pipeline

Every submission is automatically analyzed by our threat intelligence pipeline:

DNS EnrichmentActive

Resolves A, AAAA, MX, NS, TXT records. Identifies hosting provider and IP geolocation.

WHOIS AnalysisActive

Looks up domain registrar, creation date, expiry, and registrant. Calculates domain age — newly registered domains are flagged as higher risk.

URL HeuristicsActive

Scores URLs based on suspicious TLD, path entropy, brand impersonation patterns, homograph detection, and known phishing keywords.

Site Status ProbingPlanned

Checks if reported URLs are still live, redirecting, or taken down. Tracks time-to-takedown metrics.

Screenshot AnalysisPlanned

Captures page screenshots via headless browser. Detects login forms, brand logos, and urgency language for phishing classification.

Phishing Kit DetectionPlanned

Fingerprints HTML structure to identify known phishing kits. Clusters similar phishing pages across submissions.

Status checks run on page load. For real-time monitoring, contact ops@vspam.org

About vspam.org system status

This page provides real-time health monitoring for all vspam.org services. Each component is polled every 30 seconds and displays current latency, uptime percentage, and error state. All timestamps are UTC.

Monitored services

REST API — the primary interface for all IOC queries, report submissions, and account management at api.vspam.org.
PostgreSQL database — stores all IOC records, user accounts, votes, and trust tier data.
Redis cache — handles rate limiting, session state, and frequently accessed IOC lookups.
DNSBL (PowerDNS) — the DNS-based blocklist that mail servers query in real-time to block phishing senders.
Feed generation worker — background process that regenerates STIX, CSV, and JSON threat feeds on a scheduled interval.

Incident reporting

If you are experiencing issues not reflected on this page, contact support@vspam.org. For integrators, the API returns a health check at GET /health that can be used in your own monitoring pipeline. See the API documentation for details.