Developer Docs
Everything you need to integrate AntiBot into your platform. From quick-start guides to full API references — up and running in under 10 minutes.
Quick Start
Integrate AntiBot in three steps. No complex SDK required for basic detection.
Create an Account
Sign up for a free account and verify your email address.
Generate an API Key
Navigate to API Keys in your dashboard and click Create Key. Copy your public key.
Make Your First Request
Call the detection endpoint with your public key — bots blocked in <15ms.
Authentication
AntiBot uses API key-based authentication. Pass your public key in the X-API-Public-Key header on every request.
POST /api/detect HTTP/1.1 Host: antibot.prodtrackers.com X-API-Public-Key: pk_live_your_public_key_here Content-Type: application/json
Detection Endpoint
POST /api/detect
Analyzes a request and returns a verdict, risk score, and detailed signals.
Request Body
{
"fingerprint": {
"canvas": "a1b2c3...",
"webgl_vendor": "Google Inc.",
"screen_resolution": "1920x1080"
},
"behavior": {
"mouse_movements": 247,
"keyboard_events": 12,
"time_on_page_ms": 4520
}
}
API Response
{
"success": true,
"verdict": "human", // "human" | "bot" | "suspicious"
"risk_score": 12, // 0–100 (higher = more likely bot)
"action": "allow", // "allow" | "block" | "challenge"
"signals": ["low_entropy_mouse"],
"request_id": "req_abc123",
"processing_time_ms": 8.4
}
Verdict Values
- human — Request passed all detection layers. Allow access.
- bot — Request identified as automated. Block or challenge.
- suspicious — Inconclusive. Consider a CAPTCHA challenge.
Batch Detection
POST /api/batch — Pro & Enterprise only
Submit up to 100 requests in a single API call. Ideal for server-side validation of bulk traffic.
{
"requests": [
{ "ip": "198.51.100.42", "user_agent": "Mozilla/5.0..." },
{ "ip": "203.0.113.5", "user_agent": "python-requests/2.28" }
]
}
Rate Limits by Plan
| Plan | Requests / Month | Rate Limit | API Keys |
|---|---|---|---|
| Free | 10,000 | 10 req/sec | 1 |
| Pro | 500,000 | 100 req/sec | 5 |
| Enterprise | Unlimited | 1,000 req/sec | Unlimited |
Error Codes
| Code | Meaning |
|---|---|
| 401 | Missing or invalid API key |
| 403 | Plan restriction (feature not available) |
| 422 | Invalid request body — check field types |
| 429 | Rate limit exceeded — back off and retry |
| 500 | Internal server error — contact support |
JavaScript SDK
Collect browser fingerprint and behavioral signals automatically using our lightweight JS snippet. Paste it before your </body> tag:
<!-- AntiBot SDK --> <script> (function() { var ab = document.createElement('script'); ab.src = 'https://antibot.prodtrackers.com/sdk.js'; ab.dataset.key = 'YOUR_PUBLIC_KEY'; document.head.appendChild(ab); })(); </script>
Manual Integration (cURL)
curl -X POST https://antibot.prodtrackers.com/api/detect \ -H "X-API-Public-Key: pk_live_your_key" \ -H "Content-Type: application/json" \ -d '{"fingerprint":{},"behavior":{}}'