Security
Built secure by default.
HMAC-authenticated requests, TLS-only transport, scoped API keys with rotation, and full audit logging. Our intelligence pipeline refreshes continuously so your scoring is never stale — and your security posture stays modern by default.
TLS Everywhere
All API endpoints served over HTTPS with HSTS. Modern TLS 1.2+ ciphers only — no legacy protocols.
HMAC Authentication
Internal services communicate via HMAC-SHA256 signed requests with timestamp validation to prevent replay attacks and request tampering.
Scoped API Keys
Issue and rotate scoped, revocable keys per environment. Per-key rate limits and audit logs make access easy to govern.
Always-Fresh Intelligence
TTL-based decay removes stale data automatically. Continuously updated reputation, ASN, and routing intelligence — so verdicts reflect today's threat landscape, not last quarter's.
Ready to get started?
2,000 free requests per day. No credit card required.