SaaS Security
Stop Fake Signups &
Trial Abuse.
Block disposable email signups, VPN trial abuse, and automated registrations before they inflate your funnel metrics and drain your free tier.
99%
Disposable email catch rate
< 1ms
Email check latency
0
Extra vendors needed
The challenge
Fraud patterns that cost SaaS businesses the most
Disposable email trial abuse
Bad actors create hundreds of accounts with throwaway emails to infinitely recycle free trials — skewing your activation metrics and costing real infrastructure.
VPN & proxy burner accounts
Fraudsters use VPNs and residential proxies to bypass geo-restrictions, spin up parallel trial accounts, and evade IP-based limits.
Bot mass registrations
Automated bots register thousands of accounts in minutes to abuse referral bonuses, seed spam, or probe your API for vulnerabilities.
Free tier exploitation
Resource-intensive free accounts created by a single actor drain storage, compute, and support capacity meant for real paying customers.
How it works
One API call. One decision. No extra vendor.
Send the context you have
Pass the IP, email, and user-agent from the signup request — no extra data collection needed.
Get allow, challenge, or block
RequestGuard combines IP reputation, email signals, proxy detection, and device fingerprints into one structured decision.
Act in your app
Let low-risk sessions through, show a CAPTCHA on challenge, or block high-risk requests — with full audit trail in your dashboard.
Capabilities
Purpose-built signals for SaaS
Email risk scoring
Score every signup email against 100,000+ disposable domains, known abuse patterns, and domain age signals — before the account is created.
IP & connection intelligence
Detect datacenter IPs, VPNs, Tor exit nodes, and residential proxy networks at signup. Flag high-risk sessions for review without blocking real users.
Trial abuse prevention
Correlate IP, email domain, browser fingerprint, and ASN to identify single actors cycling through multiple trial accounts.
CAPTCHA on demand
Trigger proof-of-work CAPTCHA only when signals indicate automation or high risk. Zero friction for legitimate signups.
Integration
Two lines of code. Full fraud coverage.
Send the context you already collect. Get back a structured decision with risk factors — ready to act on without a separate lookup per signal.
import RequestGuard from "@requestguard/js";
const guard = RequestGuard({ apiKey: "rg_sk_live_..." });
const decision = await guard.assess({
ip: req.ip,
email: body.email,
userAgent: req.headers["user-agent"],
event: "signup",
});
// decision: "challenge" — disposable email + VPN signals
if (decision.decision === "block") {
throw new Error("Request blocked");
}
if (decision.decision === "challenge") {
return requireCaptcha();
}Keep your free tier for real users.
Start with 1,000 free protected requests. No credit card required.