Screening API: counterparty check in one call
For exchangers, P2P services, Telegram/TON bots and OTC desks that need attestation-grade screening without enterprise pricing. One POST returns a risk zone with facts you can show a client or a compliance officer.
What one call returns
Risk zone
red / amber / green — a client-readable verdict, same model as our checker and certificates.
Tether blacklist
A live contract fact (isBlackListed / freeze) — ETH, TRON, Solana.
Sanctions
Chainalysis on-chain oracle across 6 EVM chains + the OFAC list for TRON/Solana.
Scam signals
Open threat-intel databases + our community reports (fresh CIS P2P scam intel the big vendors don't have).
Behavioral facts
Address age, USDT balance, attribution (exchange/service label), pattern flags: fresh/transit/fan-in.
The call
Authentication — the X-Api-Key header. JSON response, ~1–3 s (a cold address — up to 15 s).
Pricing
| Tier | Price/mo | Checks/mo |
|---|---|---|
| Pilot | 0 | 100 |
| Start | $29 | 3 000 |
| Scale | $99 | 15 000 |
Payment in USDT (TRC-20). Keys are issued after contact — message us on Telegram or leave a request. Enterprise volumes, monitoring webhooks, SLA — negotiable.
Free Scam/Freeze Feed (no key)
An open feed for wallets, bots and researchers: community-reported addresses + fresh on-chain USDT freezes. Free forever; the only condition is attribution — link Onyx AML as the source. GET, JSON, updated daily.
Honest limits
We screen public risk markers via keyless sources. A green zone means 'no markers found', not 'guaranteed clean' — this is written into every API response. We store no PII and never log your users' IPs — only the address, chain and result.
Free preliminary case assessment
Describe your situation — we will return an honest assessment: what is realistically possible, how long it takes and what it costs. No "guaranteed unlocks" — they do not exist; compliance decides.