Complete List of User Parameters Checked by BotBlocker

BotBlocker uses a wide range of checks and parameters to accurately identify automated bots. Below is an exhaustive, detailed list of all the user parameters analyzed by BotBlocker for precise bot detection.

IP Address Checks

Blacklist and Whitelist: Checks if the IP address is explicitly blocked or allowed.
ASN (Autonomous System Number): Verifies if IP belongs to known hosting providers or suspicious networks.
Country and Region Detection: Geolocation checks for suspicious origins or mismatches.

HTTP Header Validation

User-Agent: Analyzed for known bot signatures, missing or malformed headers.
Referer: Checks for valid referrers; detects fake or suspicious referrer patterns.
Accept-Language: Validation for unusual or mismatched language preferences.
Accept-Encoding: Ensures proper browser-specific encoding methods.

Reverse DNS (PTR) Verification

Fake Search Engine Detection: Confirms legitimate search crawlers (e.g., Googlebot, Bingbot) by verifying PTR records.

Browser Feature Checks (JavaScript-based)

Canvas Fingerprinting: Analyzes canvas rendering inconsistencies typical for headless browsers.
WebGL Fingerprinting: Detects unique GPU signatures that differ from genuine browsers.
WebRTC Checks: Verifies WebRTC API support and behavior.
Font Rendering Checks: Identifies anomalies in font rendering indicative of bots.
Navigator Plugins: Checks the presence and plausibility of installed browser plugins.
Incognito/Private Mode Detection: Identifies visitors using private/incognito modes.
AdBlock Detection: Checks if the visitor is blocking ads or tracking scripts.

Browser Consistency Checks

Screen Resolution: Validates the plausibility of screen dimensions.
Browser Window Dimensions: Checks consistency of reported window size.
Navigator and Platform Consistency: Validates the consistency between navigator properties (e.g., platform, user-agent, vendor).
Browser Engine Checks: Detects automation tools such as Selenium, Puppeteer, PhantomJS.
Webdriver Status: Checks navigator.webdriver flag for automation indicators.

Timing and Performance Checks

JS Execution Timing (Jitter Analysis): Detects unnatural timing patterns indicating automation.
Page Load Time: Unusual page load and navigation patterns.
Event Timing (Mouse, Scroll): Validates human-like interaction speed and behavior.

Cookie Verification

Cookie Acceptance: Ensures cookies are supported and properly accepted by the browser.
Session Cookie Checks: Detects unusual or tampered cookie states.

CAPTCHA and Interaction Checks

Google reCAPTCHA v2 and v3 Scores: Utilizes Google’s evaluation to further identify bot-like behavior.
Dynamic and Graphical Captchas: Validates user interaction to verify real-human responses.

Behavioral Analytics

Navigation Patterns: Tracks unusual browsing sequences and page access patterns.
Form Submission Patterns: Monitors automated or scripted form submissions.
Request Frequency: Detects abnormally high request rates from a single IP or user-agent.

Cloud-Based Checks (Pro)

Real-Time IP Threat Database: Checks visitor IPs against regularly updated threat intelligence.
Behavioral Analysis Database: Matches user activity against known bot behavior collected from multiple sites.
Collective Intelligence Sharing: Real-time threat sharing across websites.

Early-Phase Traffic Filtering

Blocking Before WordPress Load: Stops malicious traffic at the earliest stage, prior to site load completion.
Custom Rule Checks: Immediate blocking based on administrator-defined rules for IP, paths, or user-agent patterns.

Security Parameters

Nonce Validation: Ensures all AJAX requests include proper WordPress nonce values, preventing CSRF attacks.
Secure Data Handling: Ensures all captured data complies with GDPR and privacy standards.

Additional Checks

Proxy Detection: Identifies visitors using proxy or VPN connections.
Tor Network Detection: Blocks visitors connecting via the Tor anonymity network.

External Links (EN):

Google reCAPTCHA Documentation
OWASP Automated Threats Handbook