Live Ethereum's #1 On-Chain AML Compliance Platform · Instant Risk Scoring

Ethereum AML Compliance.

Risk Score · Sanctions Check · Mixer Detection · Forensics · Compliance Reports

AMLeth delivers instant AML risk scoring for any Ethereum address — screening against OFAC, UN, EU and 50+ global sanctions lists, detecting mixer exposure, dark web links, and generating audit-ready compliance reports on Ethereum mainnet.

18M+Addresses Screened
50+Sanctions Lists
99.7%Detection Accuracy
<2sAvg. Check Speed
$4.2BIllicit Funds Flagged
Addresses Checked Today84,290 ▲
OFAC SDN Matches217 flagged
Tornado Cash Exposure1,842 addresses
Clean Addresses97.4% pass rate
Darknet Clusters38 active
Avg Risk Score14.2 / 100
API Requests / 24h2.1M
Compliance Reports+6,400 issued today
Addresses Checked Today84,290 ▲
OFAC SDN Matches217 flagged
Tornado Cash Exposure1,842 addresses
Clean Addresses97.4% pass rate
Darknet Clusters38 active
Avg Risk Score14.2 / 100
API Requests / 24h2.1M
Compliance Reports+6,400 issued today
How AMLeth Works

Check. Screen. Comply.

AMLeth aggregates data from 50+ sanctions lists, on-chain transaction graphs, darknet databases, and known exchange clusters to generate a comprehensive AML risk score for any Ethereum address in under 2 seconds.

01
🔍

Submit Address

Enter any Ethereum address, ENS name, or transaction hash. AMLeth resolves ENS names, fetches the full on-chain history and begins multi-layer analysis instantly.

02
🛡️

Sanctions Screening

The address and all counterparties are screened against OFAC SDN, EU Consolidated List, UN Security Council, HM Treasury, AUSTRAC, and 45+ additional global sanctions databases in real time.

03
📊

Risk Score Generated

AMLeth's ML model assigns a 0–100 risk score based on mixer exposure, darknet links, exchange origin, counterparty risk, transaction velocity, and behavioral patterns across 50M+ labeled addresses.

04
📄

Compliance Report

Download a full audit-ready AML compliance report in PDF or JSON format. Includes risk breakdown, evidence chain, sanctions hits, mixer hops, and regulatory references — accepted by VASPs and auditors.

Core Products

Full-Stack AML Suite

From real-time wallet screening to deep transaction forensics and API integration — AMLeth is the complete on-chain AML compliance platform for Ethereum and EVM chains.

🛡️

Wallet AML Screening

Instant AML risk check for any Ethereum address. Screens against 50+ sanctions lists, detects mixer exposure (Tornado Cash, ChipMixer), dark web marketplace links, ransomware clusters, and exchange blacklists. Receive a 0–100 risk score in under 2 seconds.

Accuracy 99.7%
Lists Covered 50+
🔬

Transaction Forensics

Deep-dive blockchain forensics with visual transaction graph analysis. Trace funds across multiple hops, identify cluster ownership, map counterparty relationships, and pinpoint illicit fund origin with sub-address-level precision.

Hop Depth 10+
Labeled Addrs 50M+
📋

Compliance Reports

Generate audit-ready AML compliance reports for any ETH address or EVM wallet. Reports include risk score breakdown, regulatory citations (FATF, MiCA, BSA), evidence chain, sanctions references — accepted by global VASPs, exchanges, and auditors.

Formats PDF/JSON
Issued 1.2M+
Detection Engine

Powered by On-Chain Intelligence

AMLeth's detection engine processes 50M+ labeled Ethereum addresses, real-time mempool data, and ML clustering to identify illicit activity with industry-leading accuracy.

Multi-Layer Detection

Every address check runs through seven independent detection layers simultaneously — sanctions, mixers, darknet, exchange, behavioral, cluster, and counterparty analysis — producing a composite risk score with explainable signals.

🏛️
OFAC & Global Sanctions
50+ sanctions lists checked in real-time, including SDN, EU, UN, FATF
ACTIVE
🌀
Mixer & Tornado Cash Detection
Direct and indirect exposure to Tornado Cash, ChipMixer, Sinbad, Wasabi
ACTIVE
🕸️
Darknet Marketplace Links
Connection to Hydra, AlphaBay, Silk Road successors, ransomware wallets
ACTIVE
🤖
ML Behavioral Analysis
Anomaly detection on transaction velocity, timing, and value patterns
ACTIVE

Platform Coverage

AMLeth aggregates data from 10+ on-chain data providers, government databases, OSINT sources, and proprietary ML pipelines updated every block.

Labeled Addresses 50M+
Sanctions Lists 50+
EVM Chains 12+
Data Freshness Real-time
FATF · MiCA · BSA · GDPR COMPLIANT
API & Pricing

Built for Every Scale

From individual DeFi users to enterprise VASPs and exchanges — AMLeth offers flexible pricing with a generous free tier and a developer-first REST API for seamless integration.

Starter
Free / month

For individuals and small DeFi teams who need basic AML checks without commitment.

  • 100 address checks / month
  • OFAC & EU sanctions
  • Basic risk score
  • Mixer detection
  • API access (100 req/day)
Enterprise
Custom pricing

For banks, custodians, and high-volume platforms with custom compliance requirements.

  • Unlimited checks
  • All 50+ sanctions lists
  • Dedicated data pipeline
  • SLA 99.9% uptime
  • On-premise deployment
  • Custom ML model tuning
  • Dedicated compliance expert
FAQ

Everything About AMLeth

Comprehensive answers to the most common questions about Ethereum AML compliance, crypto risk scoring, sanctions screening, and blockchain forensics.

What is AMLeth?

AMLeth is an Ethereum-native AML (Anti-Money Laundering) compliance platform that provides instant risk scoring, OFAC sanctions screening, Tornado Cash and mixer detection, transaction forensics, and audit-ready compliance reports for any ETH address or EVM-compatible wallet — all powered by on-chain data.

What is a crypto AML risk score?

A crypto AML risk score is a 0–100 numerical rating that quantifies the likelihood that an Ethereum address is associated with illicit activity, money laundering, sanctions violations, or other financial crimes. AMLeth's score combines sanctions data, mixer exposure, counterparty risk, behavioral ML analysis, and darknet links into a single actionable metric. Scores below 25 are low risk; above 75 are high risk.

How does AMLeth perform OFAC screening on Ethereum?

AMLeth screens every Ethereum address — and its first-degree and second-degree counterparties — against the OFAC Specially Designated Nationals (SDN) list, OFAC Blocked Persons list, and 49 additional global sanctions databases including EU Consolidated List, UN Security Council Sanctions, HM Treasury, AUSTRAC, FinCEN advisories, and more. Results are returned in real time, updated with every new OFAC designation.

Does AMLeth detect Tornado Cash exposure?

Yes. AMLeth detects both direct interaction with Tornado Cash smart contracts and indirect exposure through up to 10 hops of transaction tracing. Because the OFAC designation of Tornado Cash addresses, AMLeth flags any address with direct TC interaction as high risk and marks indirect exposure with graduated risk levels based on proximity and transaction volume.

What is the FATF Travel Rule and how does AMLeth help?

The FATF (Financial Action Task Force) Travel Rule requires VASPs (Virtual Asset Service Providers) to collect and transmit originator and beneficiary information for crypto transfers over $1,000 / €1,000. AMLeth's compliance reports include Travel Rule fields, beneficiary risk assessment, and VASP-to-VASP information packages compatible with major Travel Rule protocols (TRP, OpenVASP, IVMS101).

Which Ethereum wallets and EVM chains does AMLeth support?

AMLeth checks any Ethereum mainnet address and supports 12 EVM-compatible chains including Base, Arbitrum, Optimism, Polygon, BNB Chain, Avalanche, Fantom, zkSync Era, Linea, Scroll, and Gnosis Chain. Multi-chain risk analysis is available in the Professional and Enterprise plans, cross-referencing addresses across all supported chains simultaneously.

What is KYC vs AML in the context of crypto?

KYC (Know Your Customer) is the process of verifying a user's identity before onboarding. AML (Anti-Money Laundering) is the ongoing monitoring of transactions and addresses for suspicious activity, sanctions violations, and money laundering patterns. AMLeth focuses on the AML layer — screening on-chain activity — and integrates with KYC providers (Onfido, Sumsub, Jumio) to provide a complete compliance workflow for crypto businesses.

How does AMLeth calculate counterparty risk?

AMLeth maps the full transaction graph of an Ethereum address up to 10 hops deep, identifying all counterparties (addresses that sent to or received from the target). Each counterparty is risk-scored and the target address inherits a weighted counterparty risk component based on proximity (direct vs. indirect), transaction volume, and the nature of flagged relationships (exchange vs. mixer vs. sanctioned entity).

What is blockchain forensics and how is it different from AML screening?

Blockchain forensics is the detailed investigation of a specific address or transaction, tracing fund flows, identifying wallet clusters, and reconstructing the movement of assets across multiple hops — often for legal or investigative purposes. AML screening is a faster, automated pass/fail check against known risk criteria. AMLeth offers both: instant AML screening for compliance workflows and deep forensics investigation tools for complex cases.

Is AMLeth compliant with MiCA (Markets in Crypto-Assets)?

Yes. AMLeth's compliance reports are structured to meet MiCA requirements for Crypto-Asset Service Providers (CASPs) operating in the EU, including risk assessment documentation, sanctions screening evidence, and Travel Rule-compatible data fields. AMLeth monitors MiCA implementation timelines and updates its report templates to match evolving regulatory technical standards from EBA and ESMA.

What darknet marketplaces does AMLeth flag?

AMLeth maintains a continuously updated database of darknet marketplace wallet clusters including Hydra (seized), ASAP Market, Bohemia, Incognito, Tor2door, and dozens of others. It also flags addresses associated with ransomware groups (Ryuk, REvil, Conti, LockBit), crypto scam operations, phishing gangs, and known North Korean Lazarus Group wallets per UN and OFAC designations.

How does AMLeth's REST API work for exchanges and VASPs?

AMLeth's REST API accepts GET requests with an Ethereum address parameter and returns a JSON risk score object containing overall risk score, sanctions hits (if any), mixer exposure flags, darknet links, counterparty risk breakdown, and suggested compliance action (approve / review / reject). The API supports batch requests of up to 500 addresses per call with 2-second average response times. Full documentation is at amleth.xyz/docs/api.

What is a VASP and why does AML compliance matter for DeFi?

A VASP (Virtual Asset Service Provider) is any business that exchanges, transfers, safeguards, or manages crypto assets — including exchanges, custodians, DEXs with fiat on-ramps, and crypto payment processors. Under FATF Recommendation 16, VASPs are subject to AML/CFT obligations. DeFi protocols that have identifiable controllers or provide services to identifiable customers may also qualify as VASPs in many jurisdictions, making on-chain AML checks essential.

How accurate is AMLeth's mixer detection?

AMLeth achieves 99.7% accuracy on known mixer interactions based on independent benchmark testing. The platform uses a combination of smart contract address matching (direct Tornado Cash, ChipMixer, Sinbad), heuristic pattern matching for unknown mixers, and ML-based transaction graph analysis to identify mixing behavior — even when users attempt to obfuscate mixer exposure through multiple intermediate wallets.

Does AMLeth support ENS (Ethereum Name Service) lookups?

Yes. AMLeth fully resolves ENS names to their underlying Ethereum addresses before performing the AML check. You can enter any ENS domain (e.g. vitalik.eth) directly into the check interface or API, and AMLeth will resolve it, check the underlying address, and include the ENS name in the compliance report for audit trail purposes.

What is the difference between direct and indirect sanctions exposure?

Direct sanctions exposure means an Ethereum address itself appears on a sanctions list (e.g. OFAC SDN). Indirect exposure means the address has transacted with a sanctioned entity — at 1 hop (received funds from a sanctioned wallet) or higher hops (funds were laundered through intermediaries). AMLeth scores both, with direct exposure generating a maximum risk flag and indirect exposure generating graduated risk based on the number of hops and transaction value involved.

How does AMLeth help DeFi protocols with compliance?

AMLeth provides a smart contract integration layer that allows DeFi protocols to optionally check user addresses on-chain before permitting large transactions or liquidity positions. Protocols can define their own risk thresholds — blocking addresses with risk scores above a configured limit — without collecting user identity data, preserving decentralization and privacy while meeting compliance obligations where applicable.

Can I check an Ethereum transaction hash (TxHash) for AML risk?

Yes. AMLeth accepts transaction hashes in addition to addresses. For a given TxHash, AMLeth checks both the from and to addresses, analyzes the value and token transferred, checks if the transaction was part of a known mixer or laundering pattern, and produces a transaction-level AML risk report suitable for exchange compliance teams reviewing inbound deposits.

What is FinCEN and how does AMLeth relate to US crypto compliance?

FinCEN (Financial Crimes Enforcement Network) is the US Treasury bureau responsible for AML/BSA (Bank Secrecy Act) enforcement for money services businesses, including crypto exchanges. AMLeth's compliance reports align with FinCEN's guidance on virtual assets, SAR (Suspicious Activity Report) filing requirements, and CDD (Customer Due Diligence) rule standards — helping US-regulated crypto businesses document their AML screening processes.

How does AMLeth handle privacy for compliant users?

AMLeth performs all checks using only public on-chain data — no personal information is required or stored. For users who pass the AML check cleanly (low risk score, no sanctions hits), AMLeth generates a cryptographically signed clean-certificate NFT or JSON attestation that can be shared with DeFi protocols or exchanges as proof of compliance, without revealing the user's identity to AMLeth or third parties.

What is the Lazarus Group and how does AMLeth track its wallets?

The Lazarus Group is a North Korean state-sponsored hacking organization responsible for billions in crypto theft (Ronin Bridge, Harmony Horizon, WazirX) and subject to UN and OFAC sanctions. AMLeth maintains a real-time database of Lazarus Group wallet clusters and their laundering intermediaries, alerting compliance teams immediately when any transaction involves these high-risk addresses designated under North Korea sanctions programs.

Does AMLeth support batch address screening for exchanges?

Yes. AMLeth's Professional and Enterprise API supports batch screening of up to 500 Ethereum addresses per API call, returning individual risk scores, sanctions hits, and mixer flags for each address in a single response. Enterprises can also submit CSV files of up to 100,000 addresses for bulk overnight processing, with results delivered via webhook or downloadable from the compliance dashboard.

What is a Suspicious Activity Report (SAR) in crypto?

A SAR (Suspicious Activity Report) is a mandatory filing required by US law (BSA) when a financial institution — including crypto exchanges — identifies a transaction suspected of involving money laundering, fraud, or sanctions violations exceeding $5,000. AMLeth's compliance reports are structured to support SAR preparation, documenting the risk evidence chain, flagged transactions, and regulatory basis required for FinCEN SAR filings.

How does AMLeth score ERC-20 token transactions?

AMLeth checks ERC-20 token transfers (USDC, USDT, DAI, WETH, and 10,000+ other tokens) in addition to native ETH. Token contracts themselves are checked for association with scam/rug pulls, and token transfer counterparties are screened through the same 50+ sanctions lists and mixer detection pipeline as ETH transactions. This is critical for stablecoin compliance, where USDC and USDT are major vectors for sanctions evasion attempts.

What is KYT (Know Your Transaction) in crypto compliance?

KYT (Know Your Transaction) is the transaction-level equivalent of KYC — the real-time monitoring and screening of individual crypto transactions for AML risk, sanctions violations, and suspicious patterns. Unlike KYC which verifies identity at onboarding, KYT monitors the ongoing activity of verified users. AMLeth's transaction forensics tool is a KYT solution, providing real-time risk scoring on every inbound transaction for exchange and wallet compliance teams.

How does AMLeth's on-chain compliance certificate work?

After a clean AML check (risk score below 25, no sanctions hits), AMLeth can mint a time-stamped on-chain compliance attestation as an ERC-721 NFT or EIP-712 signed message linked to the wallet address. This certificate can be presented to compliant DeFi protocols, NFT marketplaces, or institutional counterparties as verifiable proof of AML screening without compromising user privacy beyond the public on-chain check.

What regulations require crypto AML compliance?

Key regulations driving crypto AML requirements include: FATF Recommendations (global standard), EU 6th Anti-Money Laundering Directive (6AMLD) and MiCA, US Bank Secrecy Act (BSA) / FinCEN rules for MSBs, UK Money Laundering Regulations (MLR 2017 amended 2022), AUSTRAC (Australia), MAS (Singapore), and VARA (Dubai). AMLeth's compliance reports are designed to satisfy documentation requirements across all major jurisdictions.

Does AMLeth detect wash trading and market manipulation?

Yes. AMLeth's behavioral ML engine flags Ethereum address patterns consistent with wash trading (circular transactions between related addresses), NFT wash trading (buy/sell cycles between controlled wallets), and pump-and-dump coordination. These patterns, while sometimes distinct from AML violations, are often precursors to or components of broader financial crime schemes and are included in AMLeth's risk scoring model.

How does AMLeth compare to Chainalysis and Elliptic?

AMLeth focuses on Ethereum and EVM chains with native on-chain integration and developer-first API access at a fraction of the cost of enterprise platforms like Chainalysis KYT or Elliptic Navigator. AMLeth offers similar core functionality — risk scoring, OFAC screening, mixer detection, transaction forensics — with a faster self-service onboarding, public API documentation, and a free tier accessible to individual developers and small DeFi teams.

Is AMLeth data GDPR-compliant?

Yes. AMLeth only processes public on-chain Ethereum data, which does not constitute personal data under GDPR in most interpretations (public blockchain transactions are pseudonymous, not tied to an identified natural person by AMLeth). For professional and enterprise customers who submit personal data alongside wallet addresses (e.g., for KYC-linked AML workflows), AMLeth operates as a GDPR-compliant data processor with a standard DPA (Data Processing Agreement) available upon request.