Homeβ€Ί Infrastructureβ€Ί rts-us-fcht.freshworksapi.com
Mostly Safe

Yes β€” rts-us-fcht.freshworksapi.com looks mostly safe

78/ 100 trust score
Industry: Infrastructure Checked Jul 18, 2026 Infrastructure average: 48 25 signals

In plain English

This is likely a legitimate API endpoint used by Freshworks, not a website for consumers. It passes security and reputation checks, but there's no public ownership information for this specific subdomain. If you're a developer integrating it, standard API security practices apply, but there's no reason to treat it as suspicious.

Cross-referenced 25 live signals from Google Safe Browsing, VirusTotal, WHOIS and more on Jul 18, 2026. How we score β†’

Where the score comes from

We look at six areas. Here's how rts-us-fcht.freshworksapi.com did in each.
80
Security

Solid encryption setup with a valid certificate from Amazon and a clean bill of health from Google's threat database. The absence of common browser protections like clickjacking prevention is standard for API endpoints, not a red flag.

70
Identity

This is a subdomain of freshworksapi.com, so the lack of a dedicated WHOIS record is expected. The parent domain points to Freshworks, a known software company, which gives some indirect confidence even though direct ownership details aren't public.

80
Reputation

The domain isn't on any blacklists and has no history of abuse. The absence of Wayback Machine snapshots is normal for a tech API that likely hasn't been crawled.

85
Transparency

No contact page, about page, or social media links were found, but that's completely normal for an API service. This isn't a consumer-facing site that needs a public face.

80
Compliance

Privacy policy and terms of service are missing, which would be a problem for a site handling user data. However, this API endpoint likely isn't collecting personal information, so the absence isn't a compliance concern.

75
Infrastructure

Hosted on Amazon's cloud with multiple IP addresses, which is typical for a scalable API. No email or DNSSEC, but those aren't required for an API-only service. The HTTP 400 response suggests this endpoint expects specific API calls, not web browsing.

What we checked

The 25 signals behind this report.
Security & Transport
Certificate Issuer
Amazon
Google Web Risk
Clean
SSL Certificate
Valid
Security Headers
0 of 6
Server
istio-envoy
TLS Version
TLS 1.2
Identity & WHOIS
About Page
Not found
Branding
Missing
Business Disclosure
Not found
Contact Info
Not found
Legal Pages
Missing
Infrastructure & DNS
DNS Blacklists
Clean
DNS Resolution
8 IP(s)
DNSSEC
Not enabled
Email (MX Records)
None
Hosting Network (ASN)
AS14618 AMAZON-AES
Page Load Time
431ms
Reputation & Reach
Sitemap
Not found
Social Media Presence
None found
Structured Data
None found
Tranco Rank
Not ranked
Trustpilot
No Trustpilot profile
Web Archive History
No archive found
Website Status
HTTP 400
robots.txt
Not found

Run this site? Show your score.

Add a trust badge so visitors can see your live score for themselves.

Get your badge β†’
verified.fyi
rts-us-fcht.freshworksapi.com
78
N Partner pick
This site checks out. Stay covered everywhere: NordVPN's Threat Protection blocks known scam sites before they load.
Try NordVPN β†’

If you've come across rts-us-fcht.freshworksapi.com and wondered if it's safe, here's the short answer: it looks like a legitimate API endpoint, not a website for shopping or signups. The domain is a subdomain of freshworksapi.com, which is tied to Freshworks, a well-known software company. Scanning for threats turned up nothing β€” no blacklists, no malware flags, and a valid SSL certificate. The site itself doesn't serve a normal web page; it returns a JSON error saying "Invalid Path," confirming this is an endpoint meant for programmatic access, not human browsing.

For developers, the lack of security headers like Content Security Policy is typical for APIs, and the missing privacy policy isn't a concern since this endpoint likely doesn't collect personal data. The biggest gap is that you can't verify who owns this exact subdomain through public records, but the connection to Freshworks provides meaningful context. If you're integrating this API, treat it like any other third-party service β€” check the documentation from the parent company and ensure your own security practices are solid. No signs of a scam here.

More Infrastructure sites

How similar sites score. See all β†’