REST API, webhooks and SDKs for integrating Synk Lock threat intelligence, fraud signals and incident workflows into your existing security stack.
All API requests are authenticated with a per-environment API key sent via the Authorization: Bearer <token> header. Keys are issued from the customer portal under Settings → API keys.
curl https://api.synklock.com/v1/intel/indicators \ -H "Authorization: Bearer $SYNKLOCK_API_KEY" \ -H "Accept: application/json"
/v1/intel/indicators — IOCs with context and confidence./v1/intel/actors — threat actor profiles and TTPs./v1/fraud/score — real-time risk scoring for transactions./v1/asm/assets — discovered external assets and findings./v1/incidents — open, update or close incidents from your tools.Webhooks deliver alerts, takedown updates and incident events with HMAC-SHA256 signatures. Official SDKs are available for TypeScript, Python and Go. STIX/TAXII feeds are exposed for intel customers.
Default limit is 1,000 requests per minute per environment. Burst, per-IP and per-endpoint policies apply. Contact your customer success manager to increase limits for production workloads.