Antoine Vastel Blog

This blog post is the first of a series on bot detection. In this blog post, we classify web bots into 3 categories depending on the technological stack they use. We go through each of these categories and present their main pros and cons depending on the use case and the type of website the web bots operate on.

In this blog post, we conduct a benchmark to measure the overhead added by the obfuscator we developed in the two previous blog posts.

In this blog post, we add new code transformations to the JavaScript obfuscator we created in a previous blog post.

Example of a simple homemade JavaScript obfuscator applied on a security fingerprinting script.

This posts sheds light on the industry around limited-edition sneakers reselling.

This post presents a new technique that enables to distinguish a vanilla Chrome browser from a Chrome browser running in headless mode.

This post presents how to automatically beautify and save JavaScript files with the js-beautify when using a crawler based on Chrome headless and Puppeteer.

This post presents how to leverage Puppeteer with Chrome headless to monitor the execution of JavaScript code on any website.

Demonstration of a canvas fingerprint used to detect devices spoofing their real OS or browser. It is inspired by the Picasso paper written by Elie Bursztein.

This post presents a crawl of the top Alexa 500K to study the use and the diversity of the canvas fingerprints on the web.