Closed-Loop Bot Enforcement in Your Cloudflare & AWS WAF
WebDecoy closes the loop from detection to enforcement—pushing composite, auto-expiring rules to your Cloudflare or AWS WAF. Challenge first, block last.
integrationInsights and updates on AI bot detection, web security, and digital threat mitigation. Discover best practices for protecting your online properties from automated threats and malicious bots.
Post 1 through 6 of 53 total posts
WebDecoy closes the loop from detection to enforcement—pushing composite, auto-expiring rules to your Cloudflare or AWS WAF. Challenge first, block last.
integrationWebDecoy now tracks bots as persistent actors and pushes a JA4 rule to your AWS WAF or Cloudflare, blocking rotating scrapers across every IP they use.
securityA deterministic, zero-false-positive way to stop stealth scrapers, built into the WebDecoy Node SDK. Runs entirely in your app, no account required.
bot-detectionSigned agents, web bot auth, and agent.json are splitting the web into sites that demand cryptographic AI identity and sites that hide it. A forward look.
bot-detectionHow FCaptcha v1.11 and v1.12 detect AI agents that drive real browsers, using CDP input forensics, think-time cadence, and declared-agent matching.
bot-detectionWebDecoy Node SDK v0.3.0 ships a self-hosted proof-of-work captcha and an in-process detection engine that scores ~40 signals with no third-party calls.
bot-detection