100 likes | 442 Views
Most importantly make sure that the visitor can run javascript code by making a javascript challenge.
E N D
I wrote this script not so long ago to keep malicious traffic off my site. I put this script on page like the contact page or the registration / login pages to keep only real users and prevent bruteforce or any other kind of attacks.
How does this script work? In order to guarantee that the visitor is a real visitor, I make the following tests:*Make sure that the useragent or ip is not changed
*Make sure the visitor can accept cookies*Most importantly make sure that the visitor can run javascript code by making a javascript challenge.
It’s very similar to Cloudflare’s bot detection script and in my opinion works just as well without having to wait the annoying 5 seconds.
Using this script WILL keep off google’s and other search engine’s bots as well, so unless you’d like to make a whitelist of all search engine bots, I suggest putting this script only in needed pages (such as contact page, login and registration).
It will keep your site protected from booters or ipstressers attacks such as Joomla, Cloudflare bypass, Get/Post/Head, XMLRPC scripts.
To know more information, visit us http://cstress.net/