Method Introduction#
This is a function similar to Cloudflare's anti-cc feature. It utilizes the principle of 5 Second Shield. Only browsers that pass the cookie detection can access your website normally. Of course, facing tens of thousands of bots, this code is still powerless. So, remember to keep a low profile as a person and don't show off everywhere. Otherwise, you will be the one who suffers in the end. Now, let's share it with those who need it.
First, create a cc.php file with the following code:
<?php define('SYSTEM\_ROOT', dirname(preg\_replace('@\\\\(.\*\\\\(.\*$@', '', preg\_replace('@\\\\(.\*\\\\(.\*$@', '', \_\_FILE\_\_))) . '/'); session\_start(); date\_default\_timezone\_set('Asia/Shanghai'); header('Content-Type: text/html; charset=UTF-8'); function getspider($useragent=''){ if(CC\_Defender==2)return false; if(!$useragent){$useragent = $\_SERVER\['HTTP\_USER\_AGENT'\];} $useragent=strtolower($useragent); if (strpos($useragent, 'baiduspider') !== false){return 'baiduspider';} if (strpos($useragent, 'googlebot') !== false){return 'googlebot';} if (strpos($useragent, 'soso') !== false){return 'soso';} if (strpos($useragent, 'bing') !== false){return 'bing';} if (strpos($useragent, 'yahoo') !== false){return 'yahoo';} if (strpos($useragent, 'sohu-search') !== false){return 'Sohubot';} if (strpos($useragent, 'sogou') !== false){return 'sogou';} if (strpos($useragent, 'youdaobot') !== false){return 'YoudaoBot';} if (strpos($useragent, 'yodaobot') !== false){return 'YodaoBot';} if (strpos($useragent, 'robozilla') !== false){return 'Robozilla';} if (strpos($useragent, 'msnbot') !== false){return 'msnbot';} if (strpos($useragent, 'lycos') !== false){return 'Lycos';} if (strpos($useragent, 'ia\_archiver') !== false strpos($useragent, 'iaarchiver') !==false){return 'alexa';} if (strpos($useragent, 'archive.org\_bot') !== false){return 'Archive';} if (strpos($useragent, 'robozilla') !== false){return 'Robozilla';} if (strpos($useragent, 'sitebot') !== false){return 'SiteBot';} if (strpos($useragent, 'mj12bot') !== false){return 'MJ12bot';} if (strpos($useragent, 'gosospider') !== false){return 'gosospider';} if (strpos($useragent, 'gigabot') !== false){return 'Gigabot';} if (strpos($useragent, 'yrspider') !== false){return 'YRSpider';} if (strpos($useragent, 'gigabot') !== false){return 'Gigabot';} if (strpos($useragent, 'jikespider') !== false){return 'jikespider';} if (strpos($useragent, 'addsugarspiderbot') !== false){return 'AddSugarSpiderBot';/\*Very few\*/} if (strpos($useragent, 'testspider') !== false){return 'TestSpider';} if (strpos($useragent, 'etaospider') !== false){return 'EtaoSpider';} if (strpos($useragent, 'wangidspider') !== false){return 'WangIDSpider';} if (strpos($useragent, 'foxspider') !== false){return 'FoxSpider';} if (strpos($useragent, 'docomo') !== false){return 'DoCoMo';} if (strpos($useragent, 'yandexbot') !== false){return 'YandexBot';} if (strpos($useragent, 'ezooms') !== false){return 'Ezooms';/\*Personal\*/} if (strpos($useragent, 'sinaweibobot') !== false){return 'SinaWeiboBot';} if (strpos($useragent, 'catchbot') !== false){return 'CatchBot';} if (strpos($useragent, 'surveybot') !== false){return 'SurveyBot';} if (strpos($useragent, 'dotbot') !== false){return 'DotBot';} if (strpos($useragent, 'purebot') !== false){return 'Purebot';} if (strpos($useragent, 'ccbot') !== false){return 'CCBot';} if (strpos($useragent, 'mlbot') !== false){return 'MLBot';} if (strpos($useragent, 'adsbot-google') !== false){return 'AdsBot-Google';} if (strpos($useragent, 'ahrefsbot') !== false){return 'AhrefsBot';} if (strpos($useragent, 'spbot') !== false){return 'spbot';} if (strpos($useragent, 'augustbot') !== false){return 'AugustBot';} return false; } if($\_GET\['rand'\] && $\_SESSION\['rand\_session'\]!=$\_GET\['rand'\]){ @header('Content-Type: text/html; charset=UTF-8'); exit('<b>The browser does not support cookies or is not accessing normally!</b>'); } if(!$\_SESSION\['rand\_session'\] && $nosecu!=true){ if(!getspider()){ $rand\_session=md5(uniqid().rand(1,1000)); $\_SESSION\['rand\_session'\]=$rand\_session; exit("<!DOCTYPE HTML> <html> <head> <meta charset=\\"UTF-8\\"/> <meta name=\\"viewport\\" content=\\"width=device-width, initial-scale=1, maximum-scale=1\\" /> <title>Security Check...</title> <script> var i = 5; var intervalid; intervalid = setInterval(\\"fun()\\", 1000); function fun() { if (i == 0) { window.location.href = \\"?{$\_SERVER\['QUERY\_STRING'\]}&rand={$rand\_session}\\"; clearInterval(intervalid); } document.getElementById(\\"mes\\").innerHTML = i; i--; } </script> <style> html, body {width: 100%; height: 100%; margin: 0; padding: 0;} body {background-color: #ffffff; font-family: Helvetica, Arial, sans-serif; font-size: 100%;} h1 {font-size: 1.5em; color: #404040; text-align: center;} p {font-size: 1em; color: #404040; text-align: center; margin: 10px 0 0 0;} #spinner {margin: 0 auto 30px auto; display: block;} .attribution {margin-top: 20px;} </style> </head> <body> <table width=\\"100%\\" height=\\"100%\\" cellpadding=\\"20\\"> <tr> <td align=\\"center\\" valign=\\"middle\\"> <noscript><h2>Please enable JavaScript in your browser and refresh the page</h2></noscript> <h1><span data-translate=\\"checking\_browser\\">Checking browser security...</span></h1> <p data-translate=\\"process\_is\_automatic\\"></p> <p data-translate=\\"allow\_5\_secs\\">Only <span id=\\"mes\\">5</span> seconds left</p> </div> </div> </td> </tr> </table></body></html>");}}
For WordPress, upload it to the theme/template/cc.php;
Code Integration#
For PHP universal integration, add the following code to the header or main file:
<?php include 'cc.php'; ?>
For WordPress integration, add the following code to the first line of the theme/header.php:
<?php get\_template\_part( 'template/cc' ); ?>
When visiting the website for the first time, the browser's cookie will be checked. Only after passing the check can the website be accessed normally. Search engine spiders have been filtered and will not affect indexing. You can add more if necessary. It is recommended not to enable it when there is no attack to avoid affecting the website experience.