Introduction
ComplianceLayer is an Infrastructure Risk Intelligence API that helps you assess and monitor security posture across your digital assets. Run comprehensive scans covering DNS, SSL/TLS, HTTP headers, open ports, and 15+ additional security modules.
What You Can Do
Scan any public domain instantly. Get a normalized 0-100 risk score with categorized findings in seconds.
Set up scheduled scans (hourly, daily, weekly) for domains you want to track. Get alerts when risk scores change.
Receive real-time notifications when scans complete or critical issues are detected. Perfect for CI/CD workflows.
Quick Example
Here's a simple request to scan a domain and retrieve results. The API will queue a scan job and return a job ID for polling.
curl -X POST "https://api.compliancelayer.net/v1/scan" \
-H "Authorization: Bearer cl_YOUR_API_KEY" \
-H "Content-Type: application/json" \
-d '{
"domain": "example.com"
}'Base URL
All API requests should be made to:
https://api.compliancelayer.net/v1Authentication
ComplianceLayer uses API keys for authentication. Include your API key in the Authorization header with the Bearer scheme:
Authorization: Bearer cl_YOUR_API_KEYLearn more about authentication →
Response Format
All API responses are JSON-encoded. Successful responses include the requested data. Error responses follow a consistent format:
{
"error": "invalid_request",
"message": "Domain parameter is required",
"status": 400
}Next Steps
Get up and running in 5 minutes with our step-by-step guide.
Complete reference documentation for all endpoints and parameters.
Set up real-time event notifications for your workflows.
Support
Need help? We're here to assist:
- Email: [email protected]
- API Status: status.compliancelayer.net
- Dashboard: app.compliancelayer.net