The latest articles on DEV Community by raigo mets (@raigo_mets_f4b56ae1ac307b). https://dev.to/raigo_mets_f4b56ae1ac307b https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3873414%2F53c055c5-5555-4c3c-9d1f-0be96087a6b4.png https://dev.to/raigo_mets_f4b56ae1ac307b en raigo mets Sat, 11 Apr 2026 11:28:34 +0000 https://dev.to/raigo_mets_f4b56ae1ac307b/how-i-built-a-fraud-detection-api-that-catches-antidetect-browsers-1l2f https://dev.to/raigo_mets_f4b56ae1ac307b/how-i-built-a-fraud-detection-api-that-catches-antidetect-browsers-1l2f <p>Every fraud tool on the market — IPQS, Sift, DataDome — was built for a world where bots used datacenter IPs. That world is gone.</p> <p>Today, fraudsters use <strong>antidetect browsers</strong> like Kameleo, GoLogin, AdsPower, and Dolphin to spoof their fingerprints. They route traffic through <strong>residential proxies</strong> that look like normal home connections. Legacy tools can't see them.</p> <p>So I built <a href="https://sntlhq.com" rel="noopener noreferrer">Sentinel</a>.</p> <h2> What It Does </h2> <p>Sentinel is a REST API that tells you if a visitor is real or fake. One API call, under 40ms, checks:</p> <ul> <li> <strong>VPN / Proxy detection</strong> (including residential proxies)</li> <li> <strong>Antidetect browser detection</strong> (Kameleo, GoLogin, AdsPower, Dolphin)</li> <li> <strong>AI bot detection</strong> (LLM-powered scrapers that mimic humans)</li> <li> <strong>Device intelligence</strong> (incognito, VM, emulator, browser tampering)</li> <li> <strong>3D face liveness</strong> (optional — proves the user is a real person at the camera)</li> </ul> <h2> How It Works </h2> <p><strong>1. Add the SDK to your frontend:</strong></p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> html &lt;script async src="https://sntlhq.com/assets/edge.js"&gt;&lt;/script&gt; 2. Call the API from your backend: const result = await fetch('https://sntlhq.com/v1/evaluate', { method: 'POST', headers: { 'Authorization': 'Bearer sk_live_YOUR_KEY', 'Content-Type': 'application/json' }, body: JSON.stringify({ token: req.body.sentinelToken }) }); const data = await result.json(); // data.isSuspicious → true = block, false = allow 3. Get a clear answer: { "isSuspicious": false, "details": { "ip": "84.15.201.92", "vpn": false, "proxied": false, "cc": "EE" }, "deviceIntel": { "browserTampering": false, "botDetected": false, "incognito": false } } Why I Built This I worked in fraud prevention and kept seeing the same problem: tools that cost $500+/month and still missed 40% of modern threats. Residential proxies and antidetect browsers make traditional IP reputation useless. Sentinel combines network intelligence (IP, VPN, proxy detection) with device intelligence (fingerprint tampering, bot detection) in a single call. No CAPTCHAs, no friction for real users. Free to Use 1,000 API requests per hour — no credit card required Sign up at sntlhq.com and get your API key in 2 minutes Full docs at sntlhq.com/api Would love feedback from anyone working in fraud prevention or security. What signals would make this more useful for your use case? </code></pre> </div> security webdev api opensource