For 20 years, the internet asked "prove you're human." Now it needs "prove you're a bot." Detection Lab does both — 34 behavioral signals for detection, 20 for verification. Zero CAPTCHAs. Zero friction.
Free tier — no credit card required.
Your AI assistant fills forms, logs into accounts, solves CAPTCHAs, and handles 2FA — on any website. Zero human-in-the-loop. Every click indistinguishable from a real user.
We built the best bot detection. Then we built the only bot that passes it.
Whether you need to block bots or trust them, Detection Lab has the behavioral signals.
34 behavioral signals score every interaction. Mouse curves, keystroke timing, scroll patterns — biology leaks through. Get a PASS/FAIL verdict in under 50ms.
20 inverted signals prove an entity IS a bot. Body Check measures machine precision. Mind Check measures autonomous reasoning. Get BOT_VERIFIED + a JWT trust token.
An autonomous agent for web tasks. A stealth engine for behavioral simulation.
Give it a URL and a description. The agent reads the page, maps form fields, resolves obstacles, and completes the task — no scripts, no selectors, no maintenance.
Generate mouse movements, keystrokes, and scroll patterns that pass 34-signal bot detection. OS-level input injection means every event is isTrusted=true.
Real-world scenarios powered by the autonomous agent and stealth engine.
Your AI books flights, fills out government forms, manages subscriptions. Hand it a URL — it handles the rest.
Run automated tests that behave like real users. Pass bot detection on staging. Catch UX issues bots normally miss.
Collect data from sites that block automation. Login, navigate, extract — with sessions that persist across runs.
Stress-test your own defenses with the same engine that powers the agent. Measure detection resistance across 34 signals.
Three steps for each product. No user-facing challenges, no interruptions.
One <script> tag, under 8 KB gzipped.
Passively collects mouse, keyboard, and scroll telemetry. No UI, no pop-ups.
The collector runs silently in the background. No interruptions, no consent banners for interaction data.
POST telemetry to /api/score. Get a 0–100 score plus per-signal breakdown in under 50ms.
Three steps for each engine. No human input required at any stage.
Give it a URL and a natural language description.
--url https://site.com/register --desc "Fill the form"
Two-phase planner maps fields (LLM) then generates actions (Python). CAPTCHAs, 2FA, and honeypots resolved automatically.
Get screenshots, timing data, action trace, and a run log. Every action is auditable.
Every signal scored independently. Combined into one verdict.
Every obstacle the web throws at bots. Every module that defeats it.
Three examples. Copy, paste, ship.
Three ways to use the engine. CLI, Python, or config.
Transparent scoring, no Google dependency, academic foundation. And the only platform that verifies bots.
| Detection Lab | reCAPTCHA v3 | Cloudflare Turnstile | FingerprintJS Pro | |
|---|---|---|---|---|
| Detection method | 34 behavioral signals | Risk score (opaque) | Challenge + fingerprint | Device fingerprint only |
| Bot Verification | 20 signals + trust token | No | No | No |
| Continuous Sessions | Yes | No | No | No |
| JWT Trust Tokens | Yes | No | No | No |
| Bot Type Classification | 4 types | No | No | No |
| User friction | Zero | Badge required | Minimal widget | Zero |
| Signal transparency | Full breakdown | Opaque score only | Pass/fail only | Confidence score |
| Free tier | 100 calls/mo | Unlimited (with limits) | Unlimited (with limits) | 20K identifications |
| Paid pricing | From $29/mo | Enterprise only | Part of CF plans | From $200/mo |
| Google dependency | None | Full | None | None |
| Academic foundation | Fitts' Law, sigma-lognormal | Proprietary | Proprietary | Entropy-based |
isTrusted events, behavioral simulation, and obstacle resolution. No other agent does all three.
| Detection Lab Agent | Browser Use | Skyvern | LaVague | |
|---|---|---|---|---|
| isTrusted events | Yes (OS-level input) | No (known bug) | No | No |
| Behavioral simulation | Bezier + Fitts' Law + AR(1) | None | None | None |
| CAPTCHA handling | Camoufox + CapSolver | None | Cloud only (paid) | None |
| 2FA / MFA | TOTP + email + SMS | None | TOTP | None |
| Detection resistance | Passes 34-signal scoring | Easily detected | Easily detected | Easily detected |
| Session persistence | storageState + auto re-auth | Manual config | Yes | user_data_dir only |
| Safety classification | 4-tier (AUTO/CONFIRM/ESCALATE/BLOCK) | None | None | None |
Start free on both products. Scale when you're ready.
Detection Lab's signals are grounded in decades of motor control, HCI, and identity research.
Movement time is a logarithmic function of distance and target size. Humans exhibit predictable speed-accuracy tradeoffs that bots don't replicate.
Human velocity profiles follow a sum of lognormal functions. This produces the characteristic bell-shaped speed curves that Detection Lab measures.
Inter-key timing distributions are unique to individuals and follow Gaussian patterns. Bots produce uniform or perfectly periodic keystrokes.
OWASP's NHI Top 10 identifies machine identity as a critical security gap. Detection Lab's bot verification provides behavioral attestation for non-human entities.
NIST's updated identity guidelines recognize behavioral signals as a valid authentication factor. Detection Lab implements 34 behavioral biometric signals.