Open Source Methods to Block Selenium-based bots from websites

Question

I'm starting a site that may get a lot of attention from trolling bots in the comments or email.

One of the most common bot frameworks appears to be Selenium.

How do I detect and block Selenium-based bots? I would prefer open-source frameworks so that I can update code in real-time. The site is basically using JavaScript, HTML5 and CSS hosted on Apache.

Answer 1

Requiring Google recaptcha before submitting a comment or email will be very affective.

https://www.google.com/recaptcha/intro/v3.html

Answer 2

You saw it right. These days one of the most common and popular bot frameworks are based on Selenium driven WebDriver.

However, Selenium driven WebDriver controlled Browsing Contexts are easy to detect and corrective measures can be implemented in different ways as follows:

• Implementing captcha / recaptcha to detect the automatic bots.

You can find a relevant detailed discussion in How does recaptcha 3 know I'm using selenium/chromedriver?

• Detecting the term HeadlessChrome within headless Chrome UserAgent

You can find a relevant detailed discussion in Access Denied page with headless Chrome on Linux while headed Chrome works on windows using Selenium through Python

• Using Bot Management service from Distil Networks

You can find a relevant detailed discussion in Unable to use Selenium to automate Chase site login

• Using Bot Manager service from Akamai

You can find a relevant detailed discussion in Dynamic dropdown doesn't populate with auto suggestions on https://www.nseindia.com/ when values are passed using Selenium and Python

• Using Bot Protection service from Datadome

You can find a relevant detailed discussion in Website using DataDome gets captcha blocked while scraping using Selenium and Python

---

References

You can find a relevant discussions in:

• Can a website detect when you are using selenium with chromedriver?