Show HN: Free tool to see how much AI bots are costing your site

16•plaintosapp•1h ago

Comments

smy_smy•1h ago

interesting!

plaintosapp•1h ago

Thanks! Curious what you're running — are you seeing AI bot traffic on your site? Would love to know if the log formats you use are covered (Nginx, Apache, Cloudflare CSV, Vercel JSON supported right now).

len_chapaty•1h ago

nice, how are you calculation the cost?

newscombinatorY•1h ago

Hopefully not by using another AI bot... ( ͡° ͜ʖ ͡°)

plaintosapp•1h ago

Nope, pure JavaScript in your browser. No AI bots were harmed or employed in the making of this tool.

plaintosapp•1h ago

Good question. The cost estimate uses two components:

1. Bandwidth: total bytes served to bots divided by 1GB, multiplied by $0.09/GB (AWS/Cloudflare blended average rate)

2. Compute: total bot requests divided by 1 million, multiplied by $0.40 (Vercel/Lambda average per million invocations)

Both rates are configurable assumptions — the real value is seeing the relative breakdown between bots and the order of magnitude of waste. Your actual cost depends on your specific hosting provider.

len_chapaty•46m ago

Got it, makes sense. Worth noting intra-region vs inter-region transfer can differ a lot too. As a blended average for an order-of-magnitude estimate, this is really useful.

plaintosapp•37m ago

Good point — intra vs inter-region transfer costs can vary significantly, especially on AWS. The $0.09 is deliberately conservative as a blended estimate. A future version could let users input their actual hosting provider rates for a more precise number. Adding that to the roadmap. Thank you.

roysting•43m ago

Was that response written and/or auto-replied by AI?

plaintosapp•39m ago

Fair question given the context. I used AI tools to help build the product, and I do use AI to help draft responses — but I read, edit, and post every reply myself. Nothing is auto-posted.

plaintosapp•1h ago

Also wrote up the background on Dev.to if anyone wants more context on how it works: [https://dev.to/plaintos_app_fd54e75a054e/i-built-a-free-tool...]

quinncom•1h ago

The article doesn't really get into the details. Does it analyze the user agent and compare it to a list of known bot user agents? What about all the bots that spoof user agent values – does it do something special to detect those?

plaintosapp•47m ago

Yes exactly — it matches against a database of 18 known AI bot user agent tokens (GPTBot, ClaudeBot, CCBot, Bytespider etc.) plus their known IP ranges where available. GPTBot for example publishes its IP ranges officially so we can match on both UA and IP.

The spoofing problem is the hard one. Bots that fully spoof Chrome headers are invisible to any UA-based tool including this one. The honest answer is that BotCost catches the "polite" bots that identify themselves — which covers the major AI companies (OpenAI, Anthropic, Google, Meta) since they all self-identify. The truly malicious scrapers that spoof identities are a harder problem requiring behavioral analysis.

So it's accurate for what it is — catching known AI training and search crawlers — but not a complete bot detection solution.

nottorp•55m ago

I ran it on my personal domain that has just some kind of landing page and nothing else on it, and it's not advertised anywhere:

0% of traffic is non-human · <$0.01/yr projected

Well, 0% of traffic is AI bots. 99% of traffic is vulnerability scanners actually.

plaintosapp•50m ago

Ha, that's a fair point — vulnerability scanners are a whole separate category I haven't tackled yet. BotCost is specifically focused on AI training and search crawlers right now (GPTBot, ClaudeBot, Bytespider etc.) rather than security scanners.

Good news: 0% AI bot traffic on an unadvertised landing page makes sense — those bots tend to follow links and sitemaps. If you run it on a site with real content and traffic you'll likely see a different picture.

Vulnerability scanners on the other hand... that's a different problem worth solving too.

Ratty – A terminal emulator with inline 3D graphics

Nullsoft, 1997-2004 AOL kills off the last maverick tech company (2004)

Training an LLM in Swift, Part 1: Taking matrix mult from Gflop/s to Tflop/s

Hardware Attestation as Monopoly Enabler

AMÁLIA and the future of European Portuguese LLMs

Gmail registration now requires scanning a QR code and sending a text message

Local AI needs to be the norm

CUDA-oxide: Nvidia's official Rust to CUDA compiler

Show HN: TikTok but for Scientific Papers

Venom and Hot Peppers Offer a Key to Killing Resistant Bacteria

I'm going back to writing code by hand

Software engineering may no longer be a lifetime career

Building a web server in aarch64 assembly to give my life (a lack of) meaning

Running local models on an M4 with 24GB memory

Scaffold a 1990s Geocities-themed static website

The greatest shot in television: James Burke had one chance to nail this scene (2024)

Guitar tuner that uses phone accelerometer

An AI coding agent, used to write code, needs to reduce your maintenance costs

Obsidian plugin was abused to deploy a remote access trojan

Incident Report: CVE-2024-YIKES

Classification of amino acids

Why we lose our friends as we age

Mythos Finds a Curl Vulnerability

Bliss (Photograph)

A.I. note takers are making lawyers nervous

The Adventure Family Tree (2024)

7 lines of code, 3 minutes: Implement a programming language (2010)

Ask HN: What are you working on? (May 2026)

First tunnel element of the Fehmarnbelt Tunnel immersed

Guy Goma's Accidental BBC Interview Lives on After 20 Years

Ratty – A terminal emulator with inline 3D graphics

Nullsoft, 1997-2004 AOL kills off the last maverick tech company (2004)

Training an LLM in Swift, Part 1: Taking matrix mult from Gflop/s to Tflop/s

Hardware Attestation as Monopoly Enabler

AMÁLIA and the future of European Portuguese LLMs

Gmail registration now requires scanning a QR code and sending a text message

Local AI needs to be the norm

CUDA-oxide: Nvidia's official Rust to CUDA compiler

Show HN: TikTok but for Scientific Papers

Venom and Hot Peppers Offer a Key to Killing Resistant Bacteria

I'm going back to writing code by hand

Software engineering may no longer be a lifetime career

Building a web server in aarch64 assembly to give my life (a lack of) meaning

Running local models on an M4 with 24GB memory

Scaffold a 1990s Geocities-themed static website

The greatest shot in television: James Burke had one chance to nail this scene (2024)

Guitar tuner that uses phone accelerometer

An AI coding agent, used to write code, needs to reduce your maintenance costs

Obsidian plugin was abused to deploy a remote access trojan

Incident Report: CVE-2024-YIKES

Classification of amino acids

Why we lose our friends as we age

Mythos Finds a Curl Vulnerability

Bliss (Photograph)

A.I. note takers are making lawyers nervous

The Adventure Family Tree (2024)

7 lines of code, 3 minutes: Implement a programming language (2010)

Ask HN: What are you working on? (May 2026)

First tunnel element of the Fehmarnbelt Tunnel immersed

Guy Goma's Accidental BBC Interview Lives on After 20 Years

Show HN: Free tool to see how much AI bots are costing your site

Comments