Complete List of User Parameters Checked by BotBlocker

BotBlocker uses a wide range of checks and parameters to accurately identify automated bots. Below is an exhaustive, detailed list of all the user parameters analyzed by BotBlocker for precise bot detection.

IP Address Checks

• Blacklist and Whitelist IP: Checks if the IP address is explicitly blocked or allowed.
• ASN (Autonomous System Number): Verifies if IP belongs to known hosting providers or suspicious networks.
• Country and Region Detection: Geolocation checks for suspicious origins or mismatches.

HTTP Header Validation

• User-Agent: Analyzed for known bot signatures, missing or malformed headers.
• Referer: Checks for valid referrers; detects fake or suspicious referrer patterns.
• Accept-Language: Validation for unusual or mismatched language preferences.
• Accept-Encoding: Ensures proper browser-specific encoding methods.

Reverse DNS (PTR) Verification

• Fake Search Engine Detection: Confirms legitimate search crawlers (e.g., Googlebot, Bingbot) by verifying PTR records.

Browser Feature Checks (JavaScript-based)

• Canvas Fingerprinting: Analyzes canvas rendering inconsistencies typical for headless browsers.
• WebGL Fingerprinting: Detects unique GPU signatures that differ from genuine browsers.
• WebRTC Checks: Verifies WebRTC API support and behavior.
• Font Rendering Checks: Identifies anomalies in font rendering indicative of bots.
• Navigator Plugins: Checks the presence and plausibility of installed browser plugins.
• Incognito/Private Mode Detection: Identifies visitors using private/incognito modes.
• AdBlock Detection: Checks if the visitor is blocking ads or tracking scripts.

Browser Consistency Checks

• Screen Resolution: Validates the plausibility of screen dimensions.
• Browser Window Dimensions: Checks consistency of reported window size.
• Navigator and Platform Consistency: Validates the consistency between navigator properties (e.g., platform, user-agent, vendor).
• Browser Engine Checks: Detects automation tools such as Selenium, Puppeteer, PhantomJS.
• Webdriver Status: Checks navigator.webdriver flag for automation indicators.

Timing and Performance Checks

• JS Execution Timing (Jitter Analysis): Detects unnatural timing patterns indicating automation.
• Page Load Time: Unusual page load and navigation patterns.
• Event Timing (Mouse, Scroll): Validates human-like interaction speed and behavior.

Cookie Verification

• Cookie Acceptance: Ensures cookies are supported and properly accepted by the browser.
• Session Cookie Checks: Detects unusual or tampered cookie states.

CAPTCHA and Interaction Checks

• Google reCAPTCHA v2 and reCAPTCHA v3 Scores: Utilizes Google’s evaluation to further identify bot-like behavior.
• Dynamic and Graphical Captchas: Validates user interaction to verify real-human responses.

Behavioral Analytics

• Navigation Patterns: Tracks unusual browsing sequences and page access patterns.
• Form Submission Patterns: Monitors automated or scripted form submissions.
• Request Frequency: Detects abnormally high request rates from a single IP or user-agent.

Cloud-Based Checks (Pro)

• Real-Time IP Threat Database: Checks visitor IPs against regularly updated threat intelligence.
• Behavioral Analysis Database: Matches user activity against known bot behavior collected from multiple sites.
• Collective Intelligence Sharing: Real-time threat sharing across websites.

Early-Phase Traffic Filtering

• Blocking Before WordPress Load: Stops malicious traffic at the earliest stage, prior to site load completion.
• Custom Rule Checks: Immediate blocking based on administrator-defined rules for IP, paths, or user-agent patterns.

Security Parameters

• Nonce Validation: Ensures all AJAX requests include proper WordPress nonce values, preventing CSRF attacks.
• Secure Data Handling: Ensures all captured data complies with GDPR and privacy standards.

Additional Checks

• Proxy Detection: Identifies visitors using proxy or VPN connections.
• Tor Network Detection: Blocks visitors connecting via the Tor anonymity network.