RiskIPFraudRiskIPFraud.com
DashboardContact Us
API Documentation

RiskIPFraud API Documentation

Learn how to integrate IP fraud detection and risk scoring into your application.

Quick Start

Get started with the RiskIPFraud API in minutes.

1. Get Your API Token

Sign up for a free account and obtain your API token from the dashboard.

2. Make Your First Request

Use the endpoint below to check any IP address:

https://riskipfraud.com/api/?token=YOUR_API_TOKEN&ip=216.58.194.174

API Endpoint

HTTP Request

GET /api/

Query Parameters

tokenRequiredYour API authentication token
ipRequiredThe IP address to analyze (IPv4 or IPv6)

Example Requests

cURL
curl "https://riskipfraud.com/api/?token=YOUR_API_TOKEN&ip=216.58.194.174"
JavaScript
const token = 'YOUR_API_TOKEN';
const ip = '216.58.194.174';

const response = await fetch(
  `https://riskipfraud.com/api/?token=${token}&ip=${ip}`
);
const data = await response.json();
console.log(data);
Python
import requests

token = 'YOUR_API_TOKEN'
ip = '216.58.194.174'

response = requests.get(
    f'https://riskipfraud.com/api/?token={token}&ip={ip}'
)
data = response.json()
print(data)

Response Format

Understanding the API response structure.

Example Response

{
  "riskipfraud": {
    "status": "ok",
    "mode": "live",
    "ip": "216.58.194.174",
    "riskipfraud_score": 1,
    "riskipfraud_risk": "low",
    "riskipfraud_url": "https://riskipfraud.com/ip/216.58.194.174",
    "riskipfraud_isp": "Google LLC",
    "riskipfraud_org": "Google LLC",
    "riskipfraud_isp_score": 1,
    "riskipfraud_isp_risk": "low",
    "riskipfraud_proxy": {
      "is_datacenter": true,
      "is_vpn": false,
      "is_apple_icloud_private_relay": false,
      "is_amazon_aws": false,
      "is_google": true
    },
    "is_blacklisted_external": false,
    "exec": "13.61 ms"
  },
  "external_datasources": {
    "dbip": {
      "ip_country_code": "US",
      "ip_state_name": "Arizona",
      "ip_city": "Phoenix",
      "ip_geolocation": "33.4484,-112.074",
      "isp_name": "Google LLC",
      "org_name": "Google LLC"
    },
    "ip2proxy": {
      "proxy_type": "PUB"
    }
  }
}

Key Response Fields

riskipfraud_score0–100

Overall fraud risk score. Higher values indicate higher risk.

riskipfraud_risklow | medium | high | very high

Risk level classification based on the score.

riskipfraud_proxyobject

Proxy detection details including VPN, datacenter, and cloud provider flags.

is_blacklisted_externalboolean

Whether the IP is found on external blacklists.

Risk Analysis Guide

How to interpret and act on risk scores.

Low Risk (0–25)

Legitimate residential or business IP. Safe to allow with normal processing.

Medium Risk (26–75)

Potentially suspicious. Consider additional verification (2FA, email confirmation).

High Risk (76–90)

High fraud indicators detected. Implement strict verification or rate limiting.

Very High Risk (91–100)

Known malicious IP or extreme fraud indicators. Consider blocking or manual review.

Best Practices

  • Combine risk score with proxy detection flags for better accuracy
  • Check ISP risk score separately for organization-level insights
  • Monitor blacklist status for known threat actors
  • Use geolocation data to detect mismatched user claims

Error Codes

400Bad RequestMissing or invalid IP parameter
401UnauthorizedInvalid or missing API token
429Too Many RequestsRate limit exceeded
500Internal Server ErrorServer error occurred