Focsec

Focsec is an Estonian IP intelligence API that detects suspicious network activity — VPNs, proxies, TOR exit nodes, and malicious bots — in real time. Built by Nineties Engineering OÜ in Tallinn, the service powers fraud prevention and bot protection for SaaS, e-commerce, and auth providers who need lightweight IP checks without the overhead of a full fraud platform.

Instead of relying on stale blocklists, Focsec continuously monitors VPN and proxy networks from its own collection infrastructure, keeping detection current and accurate.

Key features:

• 300+ VPN providers tracked globally
• 500,000+ proxies — free and commercial proxy detection
• TOR detection — identify Onion network traffic
• Bot detection — block 100,000+ known malicious bots, crawlers, and spammers
• Simple API — HTTP GET with bearer token auth: api.focsec.com/v1/ip/{IP}
• Multi-language SDKs — Python, Ruby, Node.js, curl
• Fraud prevention use cases — signup abuse, multi-accounting, login fraud, scraping

Free 14-day trial with full API access, no credit card required. A clean EU-based alternative to US IP intelligence services like IPQualityScore and MaxMind for teams who care about where their request logs are stored.