1.2.0 • Published 5 months ago

bot-guardian-js v1.2.0

Weekly downloads
-
License
MIT
Repository
github
Last release
5 months ago

GuardianJS

Bot detection and prevention library for Node.js and web applications with real-time monitoring dashboard.

Features

  • 🤖 Advanced Bot Detection
  • 🔍 Behavioral Analysis
  • 🔐 TLS Fingerprinting
  • 📱 User Agent Analysis
  • 🤖 LLM & AI Bot Detection
  • ⚡ Real-time Tracking
  • 🛡️ Express/Connect Middleware
  • 📊 Detailed Analytics

Installation

npm install bot-guardian-js

Quick Start

The easiest way to get started is to run our automatic setup:

npx guardian-setup

This will detect your framework (Next.js, Express, or React) and set up the necessary files automatically.

Framework-Specific Integration

Express.js

const express = require('express');
const { createGuardianMiddleware } = require('bot-guardian-js/express');

const app = express();

// Add GuardianJS middleware with one line
app.use(createGuardianMiddleware());

app.get('/', (req, res) => {
  res.json({
    message: req.botDetection.isBot ? 'Hello Bot!' : 'Hello Human!',
    botDetection: req.botDetection
  });
});

Next.js

// pages/api/example.js
import withGuardian from '../../lib/guardian';

function handler(req, res) {
  // Access bot detection results
  const botDetection = req.botDetection;
  
  res.status(200).json({ 
    message: botDetection.isBot ? 'Hello Bot!' : 'Hello Human!',
    botDetection
  });
}

export default withGuardian(handler);

React

// index.js
import React from 'react';
import ReactDOM from 'react-dom';
import App from './App';
import { GuardianProvider } from 'bot-guardian-js/react';

ReactDOM.render(
  <GuardianProvider>
    <App />
  </GuardianProvider>,
  document.getElementById('root')
);

Advanced Configuration

For more control, you can configure GuardianJS with custom options:

const { GuardianJS } = require('bot-guardian-js');

const guardian = new GuardianJS({
    useBehavior: true,
    threshold: 0.5,
    customRules: [
        {
            name: 'Known Bot Detection',
            test: (params) => {
                const knownBots = [
                    'googlebot',
                    'bingbot',
                    'yandexbot',
                    'duckduckbot',
                    'baiduspider',
                    'facebookexternalhit'
                ];
                const ua = params.userAgent.toLowerCase();
                return knownBots.some(bot => ua.includes(bot));
            },
            score: 1.0
        },
        {
            name: 'LLM Bot Detection',
            test: (params) => {
                const llmBots = [
                    'gptbot',
                    'chatgpt-user',
                    'oai-searchbot',
                    'claude-web',
                    'anthropic-ai'
                ];
                const ua = params.userAgent.toLowerCase();
                return llmBots.some(bot => ua.includes(bot));
            },
            score: 1.0
        }
    ]
});

Configuration Options

OptionTypeDefaultDescription
endpointstringnullAPI endpoint for event tracking
trackingEnabledbooleantrueEnable/disable event tracking
detectionThresholdnumber0.8Bot detection threshold
trackingIntervalnumber1000Interval for event flushing
bufferSizenumber10Maximum events before flush
useTLSbooleantrueEnable TLS fingerprinting
useBehaviorbooleantrueEnable behavioral analysis
thresholdnumber0.5Overall detection threshold
enableBehaviorAnalysisbooleantrueEnable behavior tracking
customRulesarray[]Custom detection rules

LLM Bot Detection

GuardianJS automatically detects AI-powered bots from major providers including:

  • OpenAI's GPTBot
  • ChatGPT User Agent
  • OpenAI's SearchBot
  • Claude/Anthropic crawlers
  • Other LLM-based crawlers

This helps protect your content from unauthorized scraping by AI systems.

Cross-Platform Integration

GuardianJS can be used with multiple web frameworks through its API service and language-specific clients.

Python/Flask Integration

For Python applications, you can use GuardianJS as a REST API service:

  1. First, start the GuardianJS API server:
const { createApiServer } = require('bot-guardian-js');

const app = createApiServer();
const PORT = process.env.PORT || 3333;

app.listen(PORT, () => {
  console.log(`GuardianJS API running on port ${PORT}`);
});
  1. Then integrate with Flask:
from flask import Flask, request, g, jsonify
import requests

app = Flask(__name__)

def detect_bot(user_agent, ip, path=None):
    """Call the GuardianJS API to detect bots"""
    response = requests.post(
        "http://localhost:3333/detect",
        json={
            "userAgent": user_agent,
            "ip": ip,
            "path": path
        }
    )
    return response.json()

@app.before_request
def before_request():
    """Add bot detection to each request"""
    g.bot_detection = detect_bot(
        user_agent=request.headers.get('User-Agent', ''),
        ip=request.remote_addr,
        path=request.path
    )

@app.route('/')
def home():
    return jsonify({
        'message': 'Hello World',
        'bot_detection': g.bot_detection
    })

PHP Integration

For PHP applications like WordPress or Laravel:

<?php
// Detect bot using GuardianJS API
function detectBot($userAgent, $ip, $path = '') {
    $data = json_encode([
        'userAgent' => $userAgent,
        'ip' => $ip,
        'path' => $path
    ]);
    
    $options = [
        'http' => [
            'header'  => "Content-type: application/json\r\n",
            'method'  => 'POST',
            'content' => $data
        ]
    ];
    
    $context = stream_context_create($options);
    $result = file_get_contents('http://localhost:3333/detect', false, $context);
    
    return json_decode($result, true);
}

// Example usage in WordPress
add_action('template_redirect', function() {
    $userAgent = $_SERVER['HTTP_USER_AGENT'] ?? '';
    $ip = $_SERVER['REMOTE_ADDR'] ?? '';
    $path = $_SERVER['REQUEST_URI'] ?? '';
    
    $botDetection = detectBot($userAgent, $ip, $path);
    
    if ($botDetection['isBot']) {
        // Handle bot traffic (e.g., show different content, block, etc.)
    }
});

Demo Application

A complete demo implementation is available in the guardianjs-demo folder. The demo shows:

  • Express middleware integration
  • Custom bot detection rules
  • Integration tests
  • Basic analytics dashboard

Running the Demo

cd guardianjs-demo
npm install
npm run dev    # Start development server
npm test       # Run integration tests

View dashboard at http://localhost:3001/dashboard

Testing Bot Detection

You can test the bot detection by sending requests with different user agents:

# Test with a regular browser
curl -A "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" http://localhost:3001/

# Test with a known bot
curl -A "Googlebot/2.1 (+http://www.google.com/bot.html)" http://localhost:3001/

# Test with an LLM bot
curl -A "GPTBot/1.0" http://localhost:3001/

Response Structure

The bot detection returns:

{
  isBot: boolean,
  confidence: number,
  score: number,
  reasons: string[],
  behavior: {
    mouseMovements: number,
    keystrokes: number,
    timeOnPage: number,
    scrolling: boolean
  }
}

Testing

Run the test suite:

npm test

Contributing

  1. Fork the repository
  2. Create your feature branch (git checkout -b feature/amazing-feature)
  3. Commit your changes (git commit -m 'Add some amazing feature')
  4. Push to the branch (git push origin feature/amazing-feature)
  5. Open a Pull Request

License

MIT

Built with TypeScript and ❤️

Support

For support, please open an issue in the GitHub repository or contact the maintainers.

Dashboard Setup

The dashboard is automatically configured when using the middleware:

botdetectionsecurityexpressnextjs
bot-guardian-jscorscross-fetchexpressmongoosereactreact-domua-parser-js
bot-guardian-js
1.2.0

5 months ago

1.1.1

5 months ago

1.1.0

5 months ago

1.0.0

5 months ago

1.0.6

5 months ago

1.0.5

5 months ago

1.1.2

5 months ago

1.0.3

5 months ago

1.0.1

5 months ago