URL Lookup
Analyze a URL or domain for fraud indicators including domain age, SSL certificates, redirect chains, threat feed listings, brand impersonation, and AI synthesis. **Data sources checked:** WHOIS/RDAP (domain age, registrar), SSL certificate analysis, Google Web Risk, URLhaus (abuse.ch), ThreatFox (abuse.ch), IPQS URL reputation, redirect chain analysis, brand impersonation detection, community reports. **Caching:** Results are cached for 24 hours. Cached lookups do not consume quota.
Analyze a URL or domain for fraud indicators including domain age, SSL certificates, redirect chains, threat feed listings, brand impersonation, and AI synthesis.
Data sources checked: WHOIS/RDAP (domain age, registrar), SSL certificate analysis, Google Web Risk, URLhaus (abuse.ch), ThreatFox (abuse.ch), IPQS URL reputation, redirect chain analysis, brand impersonation detection, community reports.
Caching: Results are cached for 24 hours. Cached lookups do not consume quota.
Authorization
BearerAuth API key from your Developer Dashboard.
Keys start with sv_live_ (production) or sv_test_ (test mode).
In: header
Request Body
application/json
TypeScript Definitions
Use the request body type in TypeScript.
Response Body
application/json
application/json
application/json
application/json
application/json
application/json
curl -X POST "https://scamverify.ai/api/v1/url/lookup" \ -H "Content-Type: application/json" \ -d '{ "url": "https://suspicious-site.example.com/login" }'{
"id": "497f6eca-6276-4993-bfeb-53cbbbba6f08",
"url": "string",
"domain": "string",
"risk_score": 100,
"verdict": "safe",
"confidence": 1,
"explanation": "string",
"signals": {
"domain_age_days": 0,
"registrar": "string",
"ssl_issuer": "string",
"ssl_age_days": 0,
"redirect_count": 0,
"brand_impersonation": {
"detected": true,
"brand": "string",
"confidence": 0
},
"google_web_risk": "string",
"urlhaus_listed": true,
"threatfox_listed": true,
"ipqs_risk_score": 0,
"community_reports": 0
},
"sources_checked": [
"string"
],
"cached": true,
"cache_expires_at": "2019-08-24T14:15:22Z",
"created_at": "2019-08-24T14:15:22Z"
}{
"error": {
"code": "validation_error",
"message": "Invalid request body",
"details": {
"issues": [
{
"field": "phone_number",
"message": "phone_number is required"
}
]
}
}
}{
"error": {
"code": "missing_api_key",
"message": "Authorization header is required. Use 'Bearer sv_live_...' format."
}
}{
"error": {
"code": "quota_exhausted",
"message": "Monthly phone quota exhausted. Upgrade your plan for more lookups.",
"upgrade_url": "https://scamverify.ai/settings/api"
}
}{
"error": {
"code": "rate_limit_exceeded",
"message": "Rate limit exceeded. Please wait before making another request.",
"retry_after": 12
}
}{
"error": {
"code": "internal_error",
"message": "An unexpected error occurred. Please try again later."
}
}Phone Number Lookup POST
Look up a U.S. phone number against FTC/FCC complaint databases, carrier records, robocall detection, community reports, and AI synthesis. Returns a risk score (0-100), verdict, confidence level, detailed signals, and an AI-generated plain-English explanation. **Data sources checked:** FTC Do Not Call (2.79M+ records), FCC Consumer Complaints, Twilio (carrier, CNAM, line type), Robocall Detection Database, IPQS phone reputation, community reports, 18 flagged high-risk VoIP carriers. **Caching:** Results are cached for 24 hours. Use `force_refresh: true` to bypass cache (still counts toward quota). Cached lookups do not consume quota.
Text Message Analysis POST
Analyze a text message (SMS) for scam indicators. Extracts embedded URLs and phone numbers, performs sub-lookups on each, detects scam patterns via AI, and returns a unified risk score. **How it works:** 1. AI analyzes message content for scam patterns (urgency, impersonation, social engineering) 2. Extracts up to 3 URLs and 3 phone numbers from the message 3. Performs full Phone and URL lookups on extracted items 4. Combines AI analysis (60% weight) with sub-lookup results (40% weight) **Quota:** Consumes 1 text quota. Extracted phone/URL sub-lookups do NOT consume additional quota.