Skip to main content
Privacy-First Protection

Threat detection that runs on your servers

VPNs, proxies, bots, AI crawlers, Tor nodes, disposable emails, and known attackers - identified locally, from your own servers. A data layer that runs underneath your existing security tools and makes each one more effective.

View Pricing See What's Included

Private by Design

All data processing stays on your infrastructure. Your users' data never leaves your servers.

Updated Monthly

Every database is refreshed monthly with verified threat data.

€99/year

All databases included. No per-query fees, no usage limits.

Layers Into Your Stack

Not a replacement for reCAPTCHA, WAFs, or firewalls - a data layer that runs underneath them and makes each one more effective.

Database snapshot · updated monthly

43,949
Threat IPs
276,130
IP Ranges
148,484
Email Domains
471
ASN Profiles
181
User Agents
406
WAF Rules

Why threat detection matters

Every day, malicious actors target online applications with fraud, scraping, and abuse. Proper detection helps you reduce losses and protect real users.

$48B
Annual global fraud losses in e-commerce
42%
Of web traffic is from bots
30%
Of free trial signups use disposable emails

What we help you detect

From VPNs and proxies to AI scrapers and disposable emails - see the types of threats AntiProxies helps you identify and block.

VPN & Proxy Detection

Identify hidden users behind anonymizers

Users hiding behind VPNs and proxies often have malicious intent. Our comprehensive database tracks over 1,000 VPN providers and identifies residential proxies, data center IPs, and anonymous proxies with high accuracy.

1,000+
VPN Providers
IPv4 + IPv6
Coverage
<1ms
Lookup Time

Disposable Email Detection

Block temporary and throwaway emails

Disposable email addresses are a primary tool for creating fake accounts, abusing free trials, and bypassing verification. Our database covers 148,484 known disposable email domains and is updated monthly.

148K+
Domains Tracked
Monthly
Updates
Catch-all
Domain detection

Bot Detection

Identify automated and headless browsers

Automated traffic from bots can scrape your content, abuse your APIs, submit spam forms, and skew your analytics. We use behavioral analysis and fingerprinting to distinguish bots from real users.

Good + bad
Bot classification
UA signatures
Fingerprint DB
<1ms
Lookup Time

Tor Exit Node Detection

Identify traffic from the Tor network

The Tor network provides anonymity that can be exploited by malicious actors. We maintain a continuously updated database of Tor exit nodes to help you identify and manage Tor traffic.

10K+
Exit Nodes
Monthly
Updates
Exit + relay
Node types

ISP & ASN Reputation

Check ISP and network reputation

Not all ISPs are created equal. Some have high concentrations of abusive traffic. We maintain reputation profiles for 471 ISPs and ASNs to help you assess risk at the network level.

471
ISP Profiles
50+
Risk Signals
Monthly
Updates

Risk Scoring Engine

Comprehensive fraud risk assessment

Combine signals from all AntiProxies databases into a single weighted risk score. Assign weights per signal, set your own thresholds, and act on a number rather than juggling six separate checks.

0–100
Risk Score
8+
Signals
Self-hosted
No API needed

* Based on internal testing against known threat databases.

Up and running in minutes

No complex SDKs, no API integration headaches. Download, load into your database, and start blocking threats immediately.

1

Download databases

Get your databases in CSV/JSON format and load them into your preferred data store (MySQL, Redis, flat files, etc.).

2

Integrate into your app

Add a few lines of code to query the databases when a user registers, logs in, or submits a form. Check IPs, emails, or both.

3

Query locally

Look up IPs against the VPN/proxy database, check emails against the disposable list, and cross-reference ISP reputation - all within your own infrastructure.

Take action

Block, challenge, or flag suspicious users based on the results. You control the logic - no third-party decisions.

Local Lookup Example (PHP) 
prepare("SELECT provider, type FROM vpn_ips WHERE ip_start <= INET_ATON(?) AND ip_end >= INET_ATON(?)");
$stmt->execute([$ip, $ip]);
$vpn_match = $stmt->fetch();

// Check if email domain is disposable
$email_domain = explode('@', $user_email)[1];
$stmt = $pdo->prepare("SELECT 1 FROM disposable_domains WHERE domain = ?");
$stmt->execute([$email_domain]);
$is_disposable = $stmt->fetch();

// Take action based on local results
if ($vpn_match || $is_disposable) {
    // Block, challenge, or flag the user
    header('HTTP/1.1 403 Forbidden');
    exit('Suspicious activity detected');
}

Plug into any stack in minutes

Standard CSV files that work everywhere - PHP, Python, Node.js, Go, or any language. Plus ready-made blocking snippets for Nginx, Apache, Cloudflare, AWS WAF, iptables, and more. No SDKs, no vendor lock-in.

  • Standard CSV format for all data
  • Works with MySQL, PostgreSQL, Redis, or flat files
  • PHP, Python, Node.js - any language works
  • Code snippets for Nginx, Apache, Cloudflare, AWS WAF, iptables, and more
  • Automate monthly updates with a simple cron job
View Pricing Contact Us
PHP Integration Example 
prepare(
        "SELECT provider FROM vpn_ips
         WHERE ip_start <= INET_ATON(?)
         AND ip_end >= INET_ATON(?)"
    );
    $stmt->execute([$ip, $ip]);
    return $stmt->fetch();
}

function is_disposable_email($pdo, $email) {
    $domain = explode('@', $email)[1] ?? '';
    $stmt = $pdo->prepare(
        "SELECT 1 FROM disposable_domains WHERE domain = ?"
    );
    $stmt->execute([$domain]);
    return (bool) $stmt->fetch();
}

// Usage in your registration flow
$ip = $_SERVER['REMOTE_ADDR'];
$email = $_POST['email'];

if (is_vpn_ip($pdo, $ip) || is_disposable_email($pdo, $email)) {
    die('Registration blocked for security reasons.');
}

Start detecting threats today

22 categories of threat data. €99/year. 30-day money-back guarantee. Simple CSV files, no complex integration required.

View Pricing Contact Us