Recon Wave Bot

Information about our security assessment infrastructure and scanning practices

Security Assessments Details

Recon Wave is a security company that actively monitors organisations' attack surface. Our goal is to make internet more secure for people and organisations. Because of that, we gather Open Source Intelligence (OSINT) and perform comprehensive security assessments and scanning on behalf of our customers.

Recon Wave conducts active and continuous scanning of resources owned by our customers with exclusive authorization. Recon Wave operates transparently and all scanning activities are performed with proper authorization and are limited to the scope defined by our customers' service agreements.

Global Distribution

Our scanning infrastructure operates from multiple regions and cloud providers worldwide to ensure comprehensive coverage and realistic conditions. This distributed approach allows us to identify potential vulnerabilities and exposures from various networks.

Internet Wide Telemetry

We also invest in open source intelligence (OSINT) and carefully measured internet wide telemetry so we can understand how services relate to one another. That perspective helps us connect customer assets, surface emerging risks, and support research that keeps the wider internet safer. We share these details to stay transparent, and you can find the opt out path at the end of this page.

Reverse DNS Identification

All IP addresses in our scanning infrastructure maintains proper PTR (Reverse DNS) records with a value:

reconwave.com

This ensures that our scanning activities can be easily identified and attributed to Recon Wave. If you discover this hostname in your security logs and would not like to opt-out or ask a question, see the sections below.

Web Scraping Identification

When performing HTTP-based security checks and web application assessments, our scanners use a distinctive User-Agent string that contains:

ReconWaveBot

A typical full User-Agent string from our scanners looks like:

Mozilla/5.0 (compatible; ReconWaveBot; +https://reconwave.com/bot)

This identifier allows system administrators and security teams to easily recognize traffic originating from our security assessment platform in their logs and monitoring systems.

Opt-out Process

Request Exclusion from Scanning

If you wish to opt out from all Recon Wave security checks and scans, you can submit a request to our dedicated opt-out email address.

Contact for opt-out requests:

bot-opt-out@reconwave.com

Please include in your request:

  • Specific domains you want excluded from scanning
  • IP addresses or IP ranges to be excluded
  • Any additional resources or systems for exclusion
  • Your organization name and contact information

Questions or Concerns?

If you have any questions about our scanning practices or need additional information, please don't hesitate to contact our team.

Contact Support