Acceptable Use Policy

Purpose

Cactus is a free safety-checking tool. This policy explains what is and isn't allowed so the Service stays available and is not used to harm others.

Permitted use

You may use Cactus to check links, emails, QR codes, and domains that you have received or are responsible for, and for legitimate security awareness, research, and education.

Prohibited use

You must not:

• Use the Service, or its outbound checks, to attack, overload, probe, or disrupt any system, network, or third party.
• Send automated, bulk, or high-volume requests that exceed the published rate limits or attempt to circumvent them.
• Use the Service to scan or test systems you do not own or are not authorized to assess, where doing so would be unlawful.
• Submit content that is unlawful, or that contains other people's personal information without a lawful basis.
• Attempt to bypass, disable, or interfere with the Service's security, rate limiting, or access controls.
• Resell, white-label, or redistribute the Service or its API without written permission.
• Use results to harass, defame, or harm any person or organization, or to facilitate fraud.

Enforcement

We may rate-limit, suspend, or block access — without notice — for any user or address that violates this policy or threatens the Service or third parties.

Reporting abuse

To report misuse of Cactus or a security issue, email info@cactus.net. See also our security.txt.

Last updated: May 2026.