Alibaba.Security.Heimdall

scanner Alibaba\.Security\.Heimdall

Alibaba Group security scanning bot

About this crawler

Alibaba.Security.Heimdall is a web crawler identified by the regular-expression pattern Alibaba\.Security\.Heimdall in the User-Agent request header. It is categorised as scanner. Use the regex above to detect, log, allow, or block Alibaba.Security.Heimdall traffic in your web server, CDN edge rules, or robots.txt.

Block-rate · top 25k sites

No block-rate data for this crawler.

Technical details

Name: Alibaba.Security.Heimdall
Pattern: Alibaba\.Security\.Heimdall
Tags: scanner
Reference: https://udger.com/resources/ua-list/bot-detail?bot=Alibaba+crawler
Added: 2026/05/02
rDNS suffixes: .alibaba-inc.com, .alibaba.com
Instances: 1 known sample(s)

rDNS verification (FCrDNS)

Verify a request is genuinely Alibaba.Security.Heimdall with forward-confirmed reverse DNS: the client IP's PTR record must end in one of the suffixes below and a forward A/AAAA lookup of that hostname must return the same IP. UA strings alone are spoofable; FCrDNS is not.

.alibaba-inc.com
.alibaba.com

Sample User-Agent strings

Alibaba.Security.Heimdall

Block this crawler

robots.txt — disallow Alibaba.Security.Heimdall:

User-agent: Alibaba.Security.Heimdall Disallow: /

Apache .htaccess — return 403:

RewriteEngine On RewriteCond %{HTTP_USER_AGENT} Alibaba\.Security\.Heimdall [NC] RewriteRule .* - [F,L]

Nginx — return 403 inside a server block:

if ($http_user_agent ~* "Alibaba\\.Security\\.Heimdall") { return 403; }

← back to all crawlers