Free Website Safety Checker API for Developers — Integrate Scam Detection in Minutes
Looking for a free API to check if a website is safe? RiskScope's REST API aggregates 14+ threat intelligence sources into a single risk score. Here's how to integrate it.
Why You Need a Website Safety API
If you're building an app where users submit URLs — a browser extension, a link shortener, a marketplace, a chat platform — you need a way to flag dangerous links before your users click them.
The problem? Threat intelligence is fragmented across dozens of sources. Google Safe Browsing covers phishing. VirusTotal covers malware. PhishTank covers community-reported phishing. Spamhaus covers spam domains. No single source gives you the full picture.
RiskScope's API solves this by aggregating 14+ threat intelligence sources into a single request that returns a 0-100 risk score.
How the RiskScope API Works
One request. One response. All the data you need.
curl -H "x-api-key: YOUR_API_KEY" \
"https://riskscope.actvli.com/api/v1/lookup?domain=example.com"
The response includes:
- Risk score (0-100) — higher means more dangerous
- Risk level —
low,medium,high, orcritical - Individual signals — each threat source's findings, with severity and description
- Signal dimensions — categorized as
identity,technical,reputation,offer, orquality
Quick Start: JavaScript/Node.js
async function checkWebsite(domain) {
const response = await fetch(
`https://riskscope.actvli.com/api/v1/lookup?domain=${domain}`,
{ headers: { 'x-api-key': process.env.RISKSCOPE_API_KEY } }
);
const data = await response.json();
if (data.risk_score > 50) {
console.warn(`Warning: ${domain} has a risk score of ${data.risk_score}`);
}
return data;
}
Quick Start: Python
import requests
import os
def check_website(domain):
response = requests.get(
f"https://riskscope.actvli.com/api/v1/lookup?domain={domain}",
headers={"x-api-key": os.environ["RISKSCOPE_API_KEY"]}
)
data = response.json()
if data["risk_score"] > 50:
print(f"Warning: {domain} scored {data['risk_score']}/100")
return data
What Threat Sources Are Checked?
Every API call runs the domain against:
| Source | What It Detects |
|---|---|
| Google Safe Browsing | Phishing, malware, social engineering |
| VirusTotal | Malware from 70+ scanning engines |
| PhishTank | Community-verified phishing URLs |
| OpenPhish | ML-based phishing detection |
| URLhaus | Active malware distribution |
| ThreatFox | Indicators of compromise |
| Feodo Tracker | Botnet C&C servers |
| Spamhaus DBL | Spam and abuse domains |
| AbuseIPDB | IP reputation and abuse history |
| StopForumSpam | Known fraud sources |
Plus RiskScope's own analysis: WHOIS/DNS age, SSL certificate validation, content analysis, and more.
Use Cases
Browser extension — Check every URL before the user navigates to it. Flag high-risk sites with a warning overlay.
Marketplace/platform — Scan seller URLs and external links posted by users. Auto-flag listings that link to known scam sites.
Email security — Extract URLs from incoming emails and check them against RiskScope before delivery.
Parental controls — Integrate into filtering software to block access to sites with high risk scores.
Security dashboard — Build an internal tool that lets your security team quickly assess domains reported by customers.
Pricing
| Plan | Lookups/Month | Price |
|---|---|---|
| Free | 100 | $0 |
| Pro | 10,000 | $29/month |
| Business | 100,000 | $99/month |
The free tier is enough to prototype and test. No credit card required — just sign up and get an API key.
Get Started
- Go to riskscope.actvli.com/pricing and get your free API key
- Make your first request using the examples above
- Read the full API documentation for response schemas and error handling
Questions? Reach out at reachout@actvli.com.
Check Any Website Yourself
RiskScope is free. No signup required. Enter any domain and get an instant risk assessment.