M
API Matrix

Botd API

Security / API Key Intermediate HTTPS CORS
Varies by plan (check documentation)
82 Score
Grade A
Visit Official Site Compare Alternatives

Overview

Botd is an open-source JavaScript library and API from FingerprintJS that detects whether a web visitor is a bot or a real human browser. It analyzes browser signals in real time and returns a bot detection result that you can verify on your server. It is commonly used to protect login forms, signup flows, and APIs from automated abuse.

💡

Beginner Tip

Include the Botd JavaScript snippet on your page to generate a detection result token, then send that token to your backend and verify it via the API. The client-side library does the heavy lifting — the API just validates the result.

Available Data

Botd data via REST API
JSON-formatted response data
Requires API key authentication

Example Response

JSON Response 
{
  "title": "The Great Gatsby",
  "authors": [
    "F. Scott Fitzgerald"
  ],
  "publishedDate": "1925-04-10",
  "pageCount": 218,
  "categories": [
    "Fiction"
  ],
  "imageLinks": {
    "thumbnail": "https://books.google.com/..."
  },
  "averageRating": 4
}

Field Reference

requestId Unique identifier for this bot detection request.
bot.result Detection outcome: "notDetected", "good", or "bad".
bot.type Specific bot category detected, such as "headless" or "automation".
ip IP address of the visitor that was analyzed.

Implementation Example 

const url = "https://github.com/fingerprintjs/botd";
// Replace headers or query params with the values required by this API.
const response = await fetch(url, {
  headers: {
  "X-API-Key": "YOUR_API_KEY"
  }
});
if (!response.ok) throw new Error(`Request failed: ${response.status}`);
const data = await response.json();
console.log(data);

What Can You Build?

Note: These code examples are AI-generated and unverified. Always refer to the official API documentation for accurate usage.

Common Errors & Troubleshooting

401 Unauthorized The API key is missing or incorrect in the request.
Pass your Botd API key in the Auth-Token header or as a query parameter as documented.
Token already used Botd result tokens are single-use and expire quickly.
Always verify the token immediately after the user action — do not cache or re-use tokens.
CORS error in browser The Botd API endpoint is being called directly from the browser instead of your backend.
Only call the verification API from your server-side code, never from the browser.

Matrix Score Breakdown

🌐 Reachability 30/30
⚡ Speed 10/20
🔒 Security 15/15
🛠 Developer XP 17/20
✓ Reliability 10/15

Partially tested on Apr 5, 2026

Technical Specifications

Auth API Key
HTTPS REQUIRED
CORS YES
Category Security
Difficulty Intermediate
Verified: 2026-04-04

Similar APIs

View All →

Application Environment Verification

82

Application Environment Verification (AEV) is an Android library and API from FingerprintJS that checks whether a user device is safe to use.

API Key Intermediate HTTPS

BinaryEdge

82

BinaryEdge is a cybersecurity platform that continuously scans the entire internet and exposes the results through its API.

API Key Intermediate HTTPS

Bugcrowd

72

The Bugcrowd API gives you programmatic access to your organization's bug bounty program data, including submissions, rewards, and researcher profiles.

API Key Intermediate HTTPS

Censys

44

Censys is an internet-wide scanning platform that lets you search for any internet-connected host, device, or certificate using its REST API.

API Key Intermediate HTTPS

Complete Criminal Checks

82

Complete Criminal Checks provides a REST API to search for criminal offense records across all U.S.

API Key Intermediate HTTPS