Sign in
← Dashboard / Signature Detail
US

Bingbot

· bingbot 2.0 Bot
SearchEngine
Policy: Allow
Probability
100 %
Confidence
91 %
Risk Profile
VeryHigh
Threat
None
Hit Count
8
Last Seen
now
Network Locale Headers Tool Transport Session Quality
Drifted
Bingbot GoogleOther
Drift vs
45.6%

Fingerprint Profile

TLS Version
TLSv1.3
HTTP Protocol
HTTP/2
Protocol Client
TLS_AES_256_GCM_SHA384
TCP OS Hint
Unavailable
Fingerprint Integrity
Suspect
UA Consistency
Flagged
Headless Indicator
Low
Datacenter IP
Clean

Browser modes same browser, different modes. One row per persisted mode

Mode Observations Maturity Shift from baseline Last seen
bot-raw 2686 2686 0.04 (ua family, priority, header case pattern) 11:16:22
websocket-upgrade 52 52 0.32 (cache control pragma, header order hash, ua family) 05:54:18
navigation 35 35 0.61 (ua family, upgrade insecure requests, priority) 05:54:11
signalr-negotiate 42 42 0.51 (ua family, priority, custom header signature) 04:42:38
sub-resource 141 141 0.50 (ua family, priority, header case pattern) 05:25:35
5 modes across 2956 observations. See composite browser-mode fingerprints.
Endpoints Visited (8) Click to expand · stats unavailable
# Path
1 /docs/add-to-kubernetes
2 /docs/add-to-docker-compose
3 /dashboard/traffic
4 /dashboard/overview
5 /dashboard/signature/fJW9pIxtpZgS1P-x30SXUw
6 /dashboard/signature/63acb85dd9ca73be
7 /dashboard/signature/22c9350252a1180d
8 /dashboard/signature/e3f8a1ef6d54ee08
Raw Requests (8) Click to expand
Time Method Path Status Prob Conf Risk Profile Action Time
11:13:56 GET /docs/add-to-kubernetes 200 100 % 100 % VeryLow Allow 11.5ms
11:13:55 GET /docs/add-to-docker-compose 200 100 % 100 % VeryLow Allow 12.0ms
10:20:21 GET /dashboard/traffic 200 100 % 100 % VeryLow Allow 11.8ms
10:20:21 GET /dashboard/overview 200 100 % 100 % VeryLow Allow 11.9ms
09:18:45 GET /dashboard/signature/fJW9pIxtpZgS1P-x30SXUw 200 100 % 100 % VeryLow Allow 271.6ms
09:01:23 GET /dashboard/signature/63acb85dd9ca73be 200 100 % 100 % VeryLow Allow 11.4ms
08:58:53 GET /dashboard/signature/22c9350252a1180d 200 100 % 100 % VeryLow Allow 11.4ms
08:58:52 GET /dashboard/signature/e3f8a1ef6d54ee08 200 100 % 100 % VeryLow Allow 12.3ms

Bot Probability & Confidence History

StyloBot Detection Overhead (ms)

User Agent

Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/[phone] Safari/537.36

Analysis

Bingbot on /docs/add-to-kube... - caught by Known bot UA pattern: Bingbot, Datacenter IP detected: Azure, Request patterns appear normal

Detection Signals

  • Known bot UA pattern: Bingbot
  • Datacenter IP detected: Azure
  • Request patterns appear normal
  • TLS connection appears normal
  • Missing connection reuse header (unusual for real browsers)

Detector Contributions (19 detectors)

Detector Confidence Delta Timing (ms)
HeuristicLate
Heuristic model (late): 99 % bot likelihood (317 features)
+0.975 0.3
Heuristic
Heuristic model (early): 85 % bot likelihood (23 features)
+0.692 0.1
UserAgent
Known bot UA pattern: Bingbot
+0.900 0.2
Ip
Datacenter IP detected: Azure
+0.600 0.0
Behavioral
Request patterns appear normal
-0.150 0.1
TlsFingerprint
TLS connection appears normal
-0.150 0.0
TcpIpFingerprint
Missing connection reuse header (unusual for real browsers)
+0.200 0.0
Http2Fingerprint
No HTTP/2 stream priority (browsers typically use this)
+0.050 0.0
AI
AI analysis: borderline case, monitoring
+0.000 10.3
Header
Browser UA without Accept-Language; deployment norm is low language rate (66 % over 106 samples)
+0.000 0.1
AiScraper
No AI scraper signals detected
+0.000 0.0
VerifiedBot
Verified Bingbot via ip_range
+0.000 0.1
SecurityTool
No security tools detected in User-Agent
+0.000 0.1
RequestHydrator
Request signals hydrated to sink
+0.000 0.0
Http3Fingerprint
Connection uses HTTP/2 (not HTTP/3)
+0.000 0.0
HeaderCorrelation
Single signature per header profile
+0.000 0.0
TransportProtocol
Transport protocol analysis complete
+0.000 0.0
VerifiedBotInline
Verified Bingbot via published IP range
+0.000 0.1
FastPathReputation
No known patterns in reputation cache
+0.000 0.0

Signal Intelligence

h2

protocol h2

request

protocol HTTP/2
accept_encoding gzip, br

risk

justification Cryptographically verified good bot

tls

cipher TLS_AES_256_GCM_SHA384
Version TLSv1.3
version TLSv1.3

Policy applied

Hit history

No sessions recorded yet.

Sessions are created when a visitor's activity gap exceeds 30 minutes.

Effective policy
Loading effective policy…
ASP.NET Pack — Auth events
JWKS health
OK

reachable

Auth pipeline
JWKS reachable
License
Licensed

ASP.NET pack enabled

OTel Mesh — Traces

Fingerprint timeline

55cd5a710c0c442d865d8604a99cbd6d 0 observations

Span + log activity for this fingerprint, ordered by timestamp.

No timeline observations

OTel Mesh receiver online, but no observations seen for this fingerprint id (check W3C baggage propagation)

Signature: E0TdFdDi2x_Ot4Eq2Ypj2w | Processing: 12ms | Country: US | UA: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/[phone] Safari/537.36 | First seen: 2026-07-16 08:58:52 UTC