Analyzing Recent's Magento 1 Credit Card Skimmer

In this blog post, we analyze a credit card skimmer injected on Magento 1 websites to steal credit card information.

Creating a simple ExpressJS middleware to detect bots

In this blog post, we show how to create a simple ExpressJS middleware to detect bots.

Bot detection 101: How to detect web bots?

This blog post presents the main bot detection techniques and explain how behavioral approaches, fingerprinting, as well as CAPTCHA can be used to detect bots.

Bot detection 101: Categories of web bots

This blog post is the first of a series on bot detection. In this blog post, we classify web bots into 3 categories depending on the technological stack they use. We go through each of these categories and present their main pros and cons depending on the use case and the type of website the web bots operate on.

Benchmarking our JavaScript obfuscator

In this blog post, we conduct a benchmark to measure the overhead added by the obfuscator we developed in the two previous blog posts.

Improving our homemade JavaScript obfuscator

In this blog post, we add new code transformations to the JavaScript obfuscator we created in a previous blog post.

A simple homemade JavaScript obfuscator

Example of a simple homemade JavaScript obfuscator applied on a security fingerprinting script.

The Intriguing Sneaker Bot industry

This posts sheds light on the industry around limited-edition sneakers reselling.

Detecting Chrome headless, the game goes on!

This post presents a new technique that enables to distinguish a vanilla Chrome browser from a Chrome browser running in headless mode.

Automatically beautify JavaScript files on the fly with Puppeteer and Chrome headless

This post presents how to automatically beautify and save JavaScript files with the js-beautify when using a crawler based on Chrome headless and Puppeteer.