▲ ▼ Database of Bot IP addresses
If you had run any web-service and checked the logs you would have found constant barrage of logs indicating bots scanning for vulnerabilities by trying to locate PHP, Wordpress, git credentials etc.
These are annoying, consumes resources at best case scenario to actually exploiting our web-service if any vulnerability is found.
I was wondering if there was a central database of these bot IP addresses contributed by public from their logs, we could block these bots from scanning our web servers.
I was wondering if there was a central database of these bot IP addresses contributed by public from their logs, we could block these bots from scanning our web servers.
Voted!
Need karma! Please check contributor guidelines.
These scanner bots use wide range of IP addresses VPS with VPN to hijacked residential IP addresses via hacked IoT devices and routers. So a better strategy is to block the bots by their scanning pattern like you had mentioned.
That makes sense, products like datadome seems to be doing just that i.e. detecting bot through its scanning patterns.