Castle understands user behavior across web, mobile and APIs. Depending on the risk associated with an individual device, we automatically trigger security notifications, challenges and account reset workflows. This lets end users self-mitigate while also improving Castle's risk models.
Get up and running by adding the SDK and track login events to Castle.
Machine learning that evolves to keep false positives at a minimum.
Alert your team or end-users to resolve any account takeovers.
Get complete visibility into your users’ devices and access patterns. Drill down into individual devices to see who is using Tor or hopping between locations.
We've tailored Castle to make developers feel right at home.
SDKs for Ruby, Python, PHP and Java. Or use Curl.
verdict = castle.authenticate( event: '$login.succeeded', user_id: 'user1234' ) puts verdict[:action] # => "allow", "challenge" or "deny"
<script src="https://d2t77mnxyo7adj.cloudfront.net/v1/c.js"></script> <script> _castle('setAppId', '451236789012343'); _castle('identify', 'user1234'); // when the user is logged in </script>