Antoine Vastel Blog

In this blog post, we analyze a credit card skimmer injected on Magento 1 websites to steal credit card information.

In this blog post, we show how to create a simple ExpressJS middleware to detect bots.

This blog post presents the main bot detection techniques and explain how behavioral approaches, fingerprinting, as well as CAPTCHA can be used to detect bots.

This blog post is the first of a series on bot detection. In this blog post, we classify web bots into 3 categories depending on the technological stack they use. We go through each of these categories and present their main pros and cons depending on the use case and the type of website the web bots operate on.

In this blog post, we conduct a benchmark to measure the overhead added by the obfuscator we developed in the two previous blog posts.

In this blog post, we add new code transformations to the JavaScript obfuscator we created in a previous blog post.

Example of a simple homemade JavaScript obfuscator applied on a security fingerprinting script.

This posts sheds light on the industry around limited-edition sneakers reselling.

This post presents a new technique that enables to distinguish a vanilla Chrome browser from a Chrome browser running in headless mode.

This post presents how to automatically beautify and save JavaScript files with the js-beautify when using a crawler based on Chrome headless and Puppeteer.