fraudguard.io

What It Is

FraudGuard.io is a cybersecurity and anti-fraud service based in Tampa, Florida, USA, centered on IP Reputation, threat intelligence, and its proprietary Attack Correlation Engine (ACE). According to its site, it operates a large public honeypot network that continuously captures malicious IPs and activity such as botnets, spam, DDoS, scanning, malware distribution, and credential stuffing, then delivers intelligence through APIs, offline databases, and multiple security components.

Core Capabilities and Deployment

Its protection coverage is fairly broad: IP reputation lookup, VPN/Tor/proxy detection, geolocation and GeoBlock, BotGuard human verification, DNS Shield outbound DNS protection, AccessGuard AWS API allowlist control, TrailGuard real-time CloudTrail monitoring, and LogGuard AI log analysis. Deployment options are also flexible, including APIs, JavaScript snippets with backend validation, CSV/SQLite offline threat databases, and DNS Shield deployments hosted by FraudGuard, in the customer’s own cloud/data center, or in a hybrid model. For integrations, it explicitly mentions WAFs, SIEMs, firewalls, AWS WAF, CloudTrail, load balancer logs, and incident response workflows.

Pricing and Plans

Transparent pricing is a plus. Free IP lookup allows up to 10 queries/day. Starter is $29/month with 1M API requests. Professional is $99/month and starts to include BotGuard, AccessGuard, custom lists, and rate limiting. Business is $299/month and adds bulk lookup, ThreatWatch, TrailGuard, and daily offline databases. Enterprise is $599/month with 100M requests, plus Webhooks, Raw IP Lists, ThreatStream, hourly offline databases, and more. Payment methods, refunds, and enterprise SLA details are not disclosed.

Pros and Cons

Its strengths are that the intelligence source emphasizes its own honeypots, it supports IPv4/IPv6, and the product forms are relatively complete, from real-time APIs to offline databases, making it suitable for integration into an existing security stack. BotGuard claims not to collect PII or perform fingerprinting, offering a different user experience from traditional CAPTCHA. DNS Shield supports sinkholing, redirects, audit logs, and customer-managed deployment, which makes it suitable for outbound traffic governance. The downsides are that there is no visible information on compliance certifications, SLAs, data residency, or third-party effectiveness testing. WAFGuard is still “Coming Soon,” and DNS Shield looks more like a custom solution. Information about access from mainland China, payment, and local support is also missing.

Who It’s For and Access from China

It is better suited to SaaS companies, e-commerce platforms, payment businesses, cloud-based enterprises, and SOC teams with development and security operations capabilities, for use cases such as login/registration abuse prevention, IP risk scoring, AWS access restrictions, outbound DNS protection, and threat intelligence enrichment. Access from China is unknown. If serving China-facing business, you should first test API latency, stability, DNS resolution availability, and payment paths. Comparable alternatives include Cloudflare Turnstile/Bot Management, reCAPTCHA Enterprise, AWS WAF/GuardDuty, GreyNoise, AbuseIPDB, Cisco Umbrella, and others.