Bot Shield is a cloud-based comprehensive bot management solution that keeps bots from hijacking your web assets. Bot Shield enables you to distinguish between legitimate human traffic and bot traffic easily, and then again between good bots and malicious ones. It is designed to protect against automated attacks, threats, fraud and avoid abuse of resources by eliminating malicious bots effectively, all without disrupting the user experience of legitimate human users.
Bot Shield offers a real-time dashboard, reporting, analytics, and alerts to continuously provide you with insights into all web activities, ensuring the optimal security profile to protect your web applications without sacrificing performance. It can be used in multiple industries to identify and block attacks and abuses, such as ticket scalping, content scraping, denial of inventory, scraping, brute force and account takeover, fraudulent registrations, malicious vulnerability scanning, carding, etc.
Resources
Features
Good Bot Library
Recognize and remember good bots and allow them access. Control access by multiple dimensions, such as IP, URL and HTTP header to meet various scenarios.
Advanced Rate Limiting
Limit access rates by IP address, URI, HTTP header, end user ID, or any combination of these parameters offer website and API protection against repeated requests.
CAPTCHA Challenge
Captcha challenge enables websites to distinguish between bots and human users. In addition, scripted bots cannot respond to Captcha challenges making them an excellent method of bot detection.
Fingerprint Challenge
Fingerprint challenge can effectively detect and avoid abnormal behaviors of switching attack IP by the same client through device fingerprint ID.
Human Behavior Detection
Generate a hashed signature of both virtual and real browsers based on 50+ attributes. Leverage real-time correlation to identify and block malicious bots through advanced bot detection.
Monitoring and Warning
Bot Shield will monitor the traffic in real-time, intelligently distinguish user traffic from bot traffic, quickly identify malicious bot traffic such as automated online fraud or credential stuffing and send notifications.
Quick and Easy Deployment
CDNetworks helps you to start blocking bad bots without complex configuration. Deployed in just a click at the backend side, Bot Shield automatically mitigates malicious bots immediately and allows good ones. By providing multiple functions, Bot Shield makes bot management easier, so you can focus on growing the business.
Bot Visibility
Bot Shield can present the identified bot traffic to our customers in real time through visualized reports, enabling customers to gain real-time insight into business security and facilitating security O&M to make security-based decisions. The dashboard of Bot Shield allows you to see the bot type, attacked map, top attacked URL, bot IP list and so on.
Intelligence Library
Bot Shield helps maximize bot recognition efficiency by providing an intelligence library, which incorporates a threat library and good bot library. Threat library, working as an event-driven library, helps you to detect and mitigate attacks in advance based on the big data analysis. At the same time, Bot Shield utilizes reverse DNS solutions to identify the features of good bots and create a good Bot library for them.
Machine Learning
By aggregating mass data into big data machine learning clusters and dynamically modeling with built-in WML algorithms, CDNetworks can perform analysis from multiple dimensions and in context to identify the latest bot features.
SDK for Mobile Applications
A stable SDK is available to protect your mobile applications from malicious bots in case the endpoint of the user can’t parse the JS code. With the SDK, Bot Shield can determine whether a request comes from a legitimate client by verifying the validity of the token and effectively secure mobile apps.
Customized Actions
Bot Shield provides you with several protection actions for different events to choose from, including log, block and challenge. In addition, it supports custom challenge thresholds and is able to send bot warnings to the origin via HTTP header. Besides, flexible protection control and rate-limiting are also supported to allow you to take specific actions against any threat type.
How it Works
Bot Shield is deployed on CDNetworks’ distributed Points-of-Presence (PoPs) as a cloud-based solution. Bot Shield uses multiple technologies to identify and block bot attacks. It uses browser detection and human behavior sensors to monitor entire sessions and then applies both hidden and visible challenge-response themes to block suspicious traffic and protect the customer experience by reducing false positives.
Customized rate limitations can be configured according to IP addresses, URIs, HTTP headers and other parameters and combinations and the triggered action and its severity level can be set by the customer. A comprehensive list of good bots can be used to avoid disruption to indexing and monitoring services, and new such good bots can be defined by the customer. Finally, each event and each action triggered are all logged. Logs are available to the customer to download or explore with an intuitive analysis tool to instigate and correlate attack events.