bitdiscovery
Security scanner identifying vulnerabilities in web infrastructure
About this crawler
bitdiscovery is a web crawler identified by the regular-expression pattern bitdiscovery in the User-Agent request header. It is categorised as scanner. Use the regex above to detect, log, allow, or block bitdiscovery traffic in your web server, CDN edge rules, or robots.txt.
Block-rate · top 25k sites
0.065%
Technical details
- Name
- bitdiscovery
- Pattern
bitdiscovery- Tags
- scanner
- Reference
- https://www.tenable.com/products/attack-surface-management
- Added
- 2026/04/17
- rDNS suffixes
.tenable.com- Instances
- 1 known sample(s)
rDNS verification (FCrDNS)
Verify a request is genuinely bitdiscovery with forward-confirmed reverse DNS: the client IP's PTR record must end in one of the suffixes below and a forward A/AAAA lookup of that hostname must return the same IP. UA strings alone are spoofable; FCrDNS is not.
.tenable.com
Sample User-Agent strings
bitdiscovery
Block this crawler
robots.txt — disallow bitdiscovery:
User-agent: bitdiscovery
Disallow: /
Apache .htaccess — return 403:
RewriteEngine On
RewriteCond %{HTTP_USER_AGENT} bitdiscovery [NC]
RewriteRule .* - [F,L]
Nginx — return 403 inside a server block:
if ($http_user_agent ~* "bitdiscovery") {
return 403;
}
← back to all crawlers