<\/p>
We fully decrypted Google\u2019s SearchGuard anti-bot system, the technology at the center of its recent lawsuit against SerpAPI.<\/p>
After fully deobfuscating the JavaScript code, we now have an unprecedented look at how Google distinguishes human visitors from automated scrapers in real time.<\/p>
What happened.<\/strong> Google filed a lawsuit on Dec. 19 against Texas-based SerpAPI LLC, alleging the company circumvented SearchGuard to scrape copyrighted content from Google Search results at a scale of \u201chundreds of millions\u201d of queries daily. Rather than targeting terms-of-service violations, Google built its case on DMCA Section 1201 \u2013 the anti-circumvention provision of copyright law.<\/p> The complaint describes SearchGuard as \u201cthe product of tens of thousands of person hours and millions of dollars of investment.\u201d<\/p> Why we care.<\/strong> The lawsuit reveals exactly what Google considers worth protecting \u2013 and how far it will go to defend it. For SEOs and marketers, understanding SearchGuard matters because any large-scale automated interaction with Google Search now triggers this system. If you\u2019re using tools that scrape SERPs, this is the wall they\u2019re hitting.<\/p> Here\u2019s where it gets interesting: SerpAPI isn\u2019t just any scraping company.<\/p> OpenAI has been partially using Google search results scraped by SerpAPI to power ChatGPT\u2019s real-time answers. SerpAPI listed OpenAI as a customer on its website as recently as May 2024, before the reference was quietly removed.<\/p> Google declined OpenAI\u2019s direct request to access its search index in 2024. Yet ChatGPT still needed fresh search data to compete. <\/p> The solution? A third-party scraper that pillages Google\u2019s SERPs and resells the data.<\/p> Google isn\u2019t attacking OpenAI directly. It\u2019s targeting a key link in the supply chain that feeds its main AI competitor.<\/p> The timing is telling. Google is striking at the infrastructure that powers rival search products \u2014 without naming them in the complaint.<\/p> We fully decrypted version 41 of the BotGuard script \u2013 the technology underlying SearchGuard. The script opens with an unexpectedly friendly message:<\/p> Behind that greeting sits one of the most sophisticated bot detection systems ever deployed.<\/p> BotGuard vs. SearchGuard.<\/strong> BotGuard is Google\u2019s proprietary anti-bot system, internally called \u201cWeb Application Attestation\u201d (WAA). Introduced around 2013, it now protects virtually all Google services: YouTube, reCAPTCHA v3, Google Maps, and more.<\/p> In its complaint against SerpAPI, Google revealed that the system protecting Search specifically is called \u201cSearchGuard\u201d \u2013 presumably the internal name for BotGuard when applied to Google Search. This is the component that was deployed in January 2025, breaking nearly every SERP scraper overnight.<\/p> Unlike traditional CAPTCHAs that require clicking images of traffic lights, BotGuard operates completely invisibly. It continuously collects behavioral signals and analyzes them using statistical algorithms to distinguish humans from bots \u2013 all without the user knowing.<\/p> The code runs inside a bytecode virtual machine with 512 registers, specifically designed to resist reverse engineering.<\/p> The system tracks four categories of behavior in real time. Here\u2019s what it measures:<\/p> Humans don\u2019t move cursors in straight lines. We follow natural curves with acceleration and deceleration \u2013 tiny imperfections that reveal our humanity.<\/p> Google tracks:<\/p> A \u201cperfect\u201d mouse movement \u2013 linear, constant speed \u2013 is immediately suspicious. Bots typically move in precise vectors or teleport between points. Humans are messier.<\/p> Detection threshold:<\/strong> Mouse velocity variance below 10 flags as bot behavior. Normal human variance falls between 50-500.<\/p> Everyone has a unique typing signature. Google measures:<\/p> A human typically shows 80-150ms variance between keystrokes. A bot? Often less than 10ms with robotic consistency.<\/p> Detection threshold:<\/strong> Key press duration variance under 5ms indicates automation. Normal human typing shows 20-50ms variance.<\/p> Natural scrolling has variable velocity, direction changes, and momentum-based deceleration. Programmatic scrolling is often too smooth, too fast, or perfectly uniform.<\/p> Google measures:<\/p> Scrolling in fixed increments \u2013 100px, 100px, 100px \u2013 is a red flag.<\/p> Detection threshold:<\/strong> Scroll delta variance under 5px suggests bot activity. Humans typically show 20-100px variance.<\/p> This is the killer signal. Humans are inconsistent, and that\u2019s exactly what makes us human.<\/p> Google uses Welford\u2019s algorithm to calculate variance in real-time with constant memory usage \u2013 meaning it can analyze patterns without storing massive amounts of data, regardless of how many events occur. As each event arrives, the algorithm updates its running statistics.<\/p> If your action intervals have near-zero variance, you\u2019re flagged.<\/p> The math:<\/strong> If timing follows a Gaussian distribution with natural variance, you\u2019re human. If it\u2019s uniform or deterministic, you\u2019re a bot.<\/p> Detection threshold:<\/strong> Event counts exceeding 200 per second indicate automation. Normal human interaction generates 10-50 events per second.<\/p> Beyond behavior, SearchGuard fingerprints your browser environment by monitoring over 100 HTML elements. The complete list extracted from the source code includes:<\/p> SearchGuard also collects extensive browser and device data:<\/p> Navigator properties:<\/strong><\/p> Screen properties:<\/strong><\/p> Performance:<\/strong><\/p> Visibility:<\/strong><\/p> WebDriver detection:<\/strong> The script specifically checks for signatures that betray automation tools:<\/p> Here\u2019s the critical discovery: SearchGuard uses a cryptographic system that can invalidate any bypass within minutes.<\/p> The script generates encrypted tokens using an ARX cipher (Addition-Rotation-XOR) \u2013 similar to Speck, a family of lightweight block ciphers released by the NSA in 2013 and optimized for software implementations on devices with limited processing power. <\/p> But there\u2019s a twist.<\/p> The magic constant rotates.<\/strong> The cryptographic constant embedded in the cipher isn\u2019t fixed. It changes with every script rotation.<\/p> Observed values from our analysis:<\/p> The script itself is served from URLs with integrity hashes: Even if you fully reverse-engineer the system, your implementation becomes invalid with the next update.<\/p> It\u2019s cat and mouse by design.<\/p> Two algorithms power SearchGuard\u2019s behavioral analysis:<\/p> Combined, these algorithms build a statistical profile of your behavior and compare it against what humans actually do.<\/p> SerpAPI\u2019s founder and CEO, Julien Khaleghy, shared this statement with Search Engine Land:<\/p> \u201cSerpApi has not been served with Google\u2019s complaint, and prior to filing, Google did not contact us to raise any concerns or explore a constructive resolution. For more than eight years, SerpApi has provided developers, researchers, and businesses with access to public search data. The information we provide is the same information any person can see in their browser without signing in. We believe this lawsuit is an effort to stifle competition from the innovators who rely on our services to build next-generation AI, security, browsers, productivity, and many other applications.\u201d<\/p> <\/blockquote> The defense may face challenges. The DMCA doesn\u2019t require content to be non-public \u2013 it prohibits circumventing technical protection measures, period. If Google proves SerpAPI deliberately bypassed SearchGuard protections, the \u201cpublic data\u201d argument may not hold.<\/p> If you\u2019re building SEO tools that programmatically access Google Search, 2025 was brutal.<\/p> In January, Google deployed SearchGuard. Nearly every SERP scraper suddenly stopped returning results. SerpAPI had to scramble to develop workarounds \u2013 which Google now calls illegal circumvention.<\/p> Then in September, Google removed the The combined effect: traditional scraping approaches are increasingly difficult and expensive to maintain.<\/p> For the industry:<\/strong> This lawsuit could reshape how courts view anti-scraping measures. If SearchGuard qualifies as a valid \u201ctechnological protection measure\u201d under DMCA, every platform could deploy similar systems with legal teeth.<\/p> Under DMCA Section 1201, statutory damages range from $200 to $2,500 per circumvention act. With hundreds of millions of alleged violations daily, the theoretical liability is astronomical \u2013 though Google\u2019s complaint acknowledges that \u201cSerpApi will be unable to pay.\u201d<\/p> The message isn\u2019t about money. It\u2019s about setting precedent.<\/p> Meanwhile, the antitrust case rolls on. Judge Mehta ordered Google to share its index and user data with \u201cQualified Competitors\u201d at marginal cost. One hand is being forced open while the other throws punches.<\/p> Google\u2019s position: \u201cYou want our data? Go through the antitrust process and the technical committee. Not through scraping.\u201d<\/p> Here\u2019s the uncomfortable truth: Google technically offers publishers controls, but they\u2019re limited. Google-Extended allows publishers to opt out of AI training for Gemini models and Vertex AI \u2013 but it doesn\u2019t apply to Search AI features including AI Overviews.<\/p> Google\u2019s documentation states: <\/p> \u201cAI is built into Search and integral to how Search functions, which is why robots.txt directives for Googlebot is the control for site owners to manage access to how their sites are crawled for Search.\u201d<\/p> <\/blockquote> Court testimony from DeepMind VP Eli Collins during the antitrust trial confirmed this separation: content opted out via Google-Extended could still be used by the Search organization for AI Overviews, because Google-Extended isn\u2019t the control mechanism for Search.<\/p> The only way to fully opt out of AI Overviews? Block Googlebot entirely \u2013 and lose all search traffic.<\/p> Publishers face an impossible choice: accept that your content feeds Google\u2019s AI search products, or disappear from search results altogether.<\/p> Your move, courts.<\/p> This analysis is based on version 41 of the BotGuard script, extracted and deobfuscated from challenge data in January 2026. The information is provided for informational purposes only.<\/em><\/p> <\/div> Contributing authors are invited to create content for Search Engine Land and are chosen for their expertise and contribution to the search community. Our contributors work under the oversight of the editorial staff and contributions are checked for quality and relevance to our readers. Search Engine Land is owned by Semrush. Contributor was not asked to make any direct or indirect mentions of Semrush. The opinions they express are their own.<\/em> <\/p> News#SearchGuard #Google #detects #bots #SerpAPI #lawsuit #reveals1768856777<\/p> ","protected":false},"excerpt":{"rendered":" We fully decrypted Google\u2019s SearchGuard anti-bot system, the technology at the center of its recent lawsuit against SerpAPI. After fully deobfuscating the JavaScript code, we now have an unprecedented look at how Google distinguishes human visitors from automated scrapers in real time. What happened. Google filed a lawsuit on Dec. 19 against Texas-based SerpAPI LLC, […]<\/p>\n","protected":false},"author":1,"featured_media":1783,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[18],"tags":[89,668,75,1967,83,4089,4087,4088],"class_list":["post-1782","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-careers","tag-bots","tag-detects","tag-google","tag-lawsuit","tag-news","tag-reveals","tag-searchguard","tag-serpapi"],"acf":[],"_links":{"self":[{"href":"http:\/\/longzhuplatform.com\/index.php?rest_route=\/wp\/v2\/posts\/1782","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/longzhuplatform.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/longzhuplatform.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/longzhuplatform.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/longzhuplatform.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1782"}],"version-history":[{"count":0,"href":"http:\/\/longzhuplatform.com\/index.php?rest_route=\/wp\/v2\/posts\/1782\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"http:\/\/longzhuplatform.com\/index.php?rest_route=\/wp\/v2\/media\/1783"}],"wp:attachment":[{"href":"http:\/\/longzhuplatform.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1782"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/longzhuplatform.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1782"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/longzhuplatform.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1782"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}The OpenAI connection<\/h2>
What we found inside SearchGuard<\/h2>
Anti-spam. Want to say hello? Contact [email\u00a0protected] *\/<\/code><\/pre> How Google knows you\u2019re human<\/h2>
Mouse movements<\/h3>
Keyboard rhythm<\/h3>
Scroll behavior<\/h3>
Timing jitter<\/h3>
The 100+ DOM elements Google monitors<\/h2>
Environmental fingerprinting<\/h2>
navigator.webdriver<\/code> (true if automated)<\/li> window.chrome.runtime<\/code> (absent in headless mode)<\/li> $chrome_asyncScriptInfo<\/code>)<\/li> __selenium_unwrapped<\/code>)<\/li> _phantom<\/code>)<\/li> <\/ul> Why bypasses become obsolete in minutes<\/h2>
\/\/www.google.com\/js\/bg\/{HASH}.js<\/code>. When the hash changes, the cache invalidates, and every client downloads a fresh version with new cryptographic parameters.<\/p> The statistical algorithms<\/h2>
SerpAPI\u2019s response<\/h2>
What this means for SEO \u2013 and the bigger picture<\/h2>
num=100<\/code> parameter \u2013 a long-standing URL trick that allowed tools to retrieve 100 results in a single request instead of 10. Officially, Google said it was \u201cnot a formally supported feature.\u201d But the timing was telling: forcing scrapers to make 10x more requests dramatically increased their operational costs. Some analysts suggested the move specifically targeted AI platforms like ChatGPT and Perplexity that relied on mass scraping for real-time data.<\/p>
Dig deeper<\/h3>