The Natox Scan API
One call returns a full on-chain rug-pull report as JSON — snipers, bundles, top-100 holders, wallet ages, funding sources and an AI risk score. Built for trading bots, Telegram bots and agents.
Endpoint
GET https://natox.ai/api/v1/scan?token=<mint>
POST https://natox.ai/api/v1/scan { "token": "<mint>" }Returns JSON. CORS is open, so you can call it directly from a browser app. Repeat scans of the same token are served from cache instantly.
Quick start
# cURL
curl "https://natox.ai/api/v1/scan?token=<mint>"
# JavaScript
const r = await fetch("https://natox.ai/api/v1/scan?token=" + mint);
const { success, data } = await r.json();
console.log(data.risk.score, data.risk.level);Response shape
{
"success": true,
"data": {
"token": { "address", "name", "symbol", "decimals", "supply", "isPumpFun", "deployer" },
"risk": { "score", "level", "summary", "flags": [ … ] },
"snipers": { "total", "stillHolding", "sold", "holdingPercent", "wallets": [ … ] },
"bundles": { "isBundled", "bundleCount", "bundledWallets", "groups": [ … ] },
"holders": { "totalHolders", "freshWallets", "singleTokenWallets",
"fundingSources": [ … ], "topHolders": [ … ] },
"security":{ "mintAuthority", "freezeAuthority", "lpStatus", "lpVenue", "lpLocked" },
"meta": { "analyzedAt", "fromCache", "creditsUsed", "reportUrl" }
}
}risk.score is 0–100 (higher = riskier); risk.level is one of SAFE · CAUTION · RISKY · DANGER.
Rate limits
Free / anonymous
3 req / min
per IP address
Over the limit returns 429 with a Retry-After header. Pass your key via the x-api-key header.
Errors
{ "success": false, "error": "...", "code": "..." }
BAD_REQUEST invalid / missing token
LOW_MARKET_CAP token under $20k market cap (not scanned)
RATE_LIMITED over 3 req/min — retry after the window
SCAN_FAILED upstream temporarily unavailableTerms of use
The API is provided as-is — on-chain analysis, not financial advice, with no uptime or accuracy guarantee. No resale of the raw feed or scraping around limits. See full terms.