Bot detection library that runs in the browser. Detects automation tools and frameworks. No server required, runs 100% on the client. MIT license, no usage restrictions.
I looked at the quick start and it seems that it would be trivial for some automation software to simply intercept the request for loading the script and parch it to always return false.
This could theoretically be mitigated by checking the checksum of the BotD JS lib, but the code doing that could also get patched.
Are there any recommendations on how to prevent that sort of attack?
Hello,
I looked at the quick start and it seems that it would be trivial for some automation software to simply intercept the request for loading the script and parch it to always return false.
This could theoretically be mitigated by checking the checksum of the BotD JS lib, but the code doing that could also get patched.
Are there any recommendations on how to prevent that sort of attack?