import { captureError } from '../errors' import { prototypeLies } from '../lies' import { hashMini } from '../utils/crypto' import { createTimer, queueEvent, IS_BLINK, IS_GECKO, braveBrowser, getBraveMode, logTestResult, performanceLogger, hashSlice } from '../utils/helpers' import { HTMLNote, modal } from '../utils/html' export default async function getResistance() { try { const timer = createTimer() await queueEvent(timer) const data = { privacy: undefined, security: undefined, mode: undefined, extension: undefined, engine: ( IS_BLINK ? 'Blink' : IS_GECKO ? 'Gecko' : '' ), } // Firefox/Tor Browser const regex = (n) => new RegExp(`${n}+$`) const delay = (ms, baseNumber, baseDate) => new Promise((resolve) => setTimeout(() => { const date = baseDate ? baseDate : +new Date() // @ts-ignore const value = regex(baseNumber).test(date) ? regex(baseNumber).exec(date)[0] : date return resolve(value) }, ms)) const getTimerPrecision = async () => { const baseDate = +new Date() const baseNumber = +('' + baseDate).slice(-1) const a = await delay(0, baseNumber, baseDate) const b = await delay(1, baseNumber) const c = await delay(2, baseNumber) const d = await delay(3, baseNumber) const e = await delay(4, baseNumber) const f = await delay(5, baseNumber) const g = await delay(6, baseNumber) const h = await delay(7, baseNumber) const i = await delay(8, baseNumber) const j = await delay(9, baseNumber) const lastCharA = ('' + a).slice(-1) const lastCharB = ('' + b).slice(-1) const lastCharC = ('' + c).slice(-1) const lastCharD = ('' + d).slice(-1) const lastCharE = ('' + e).slice(-1) const lastCharF = ('' + f).slice(-1) const lastCharG = ('' + g).slice(-1) const lastCharH = ('' + h).slice(-1) const lastCharI = ('' + i).slice(-1) const lastCharJ = ('' + j).slice(-1) const protection = ( lastCharA == lastCharB && lastCharA == lastCharC && lastCharA == lastCharD && lastCharA == lastCharE && lastCharA == lastCharF && lastCharA == lastCharG && lastCharA == lastCharH && lastCharA == lastCharI && lastCharA == lastCharJ ) const baseLen = ('' + a).length const collection = [a, b, c, d, e, f, g, h, i, j] return { protection, delays: collection.map((n) => ('' + n).length > baseLen ? ('' + n).slice(-baseLen) : n), precision: protection ? Math.min(...collection.map((val) => ('' + val).length)) : undefined, precisionValue: protection ? lastCharA : undefined, } } const [ isBrave, timerPrecision, ] = await Promise.all([ braveBrowser(), IS_BLINK ? undefined : getTimerPrecision(), ]) if (isBrave) { const braveMode = getBraveMode() data.privacy = 'Brave' // @ts-ignore data.security = { 'FileSystemWritableFileStream': 'FileSystemWritableFileStream' in window, 'Serial': 'Serial' in window, 'ReportingObserver': 'ReportingObserver' in window, } data.mode = ( braveMode.allow ? 'allow' : braveMode.standard ? 'standard' : braveMode.strict ? 'strict' : '' ) } const { protection } = timerPrecision || {} if (IS_GECKO && protection) { const features = { 'OfflineAudioContext': 'OfflineAudioContext' in window, // dom.webaudio.enabled 'WebGL2RenderingContext': 'WebGL2RenderingContext' in window, // webgl.enable-webgl2 'WebAssembly': 'WebAssembly' in window, // javascript.options.wasm 'maxTouchPoints': 'maxTouchPoints' in navigator, 'RTCRtpTransceiver': 'RTCRtpTransceiver' in window, 'MediaDevices': 'MediaDevices' in window, 'Credential': 'Credential' in window, } const featureKeys = Object.keys(features) const targetSet = new Set([ 'RTCRtpTransceiver', 'MediaDevices', 'Credential', ]) const torBrowser = featureKeys.filter((key) => targetSet.has(key) && !features[key]).length == targetSet.size const safer = !features.WebAssembly data.privacy = torBrowser ? 'Tor Browser' : 'Firefox' // @ts-ignore data.security = { 'reduceTimerPrecision': true, ...features, } data.mode = ( !torBrowser ? 'resistFingerprinting' : safer ? 'safer' : 'standard' ) } // extension // - this technique gets a small sample of known lie patterns // - patterns vary based on extensions settings, version, browser const prototypeLiesLen = Object.keys(prototypeLies).length // patterns based on settings const disabled = 'c767712b' const pattern = { noscript: { contentDocumentHash: ['0b637a33', '37e2f32e', '318390d1'], contentWindowHash: ['0b637a33', '37e2f32e', '318390d1'], getContextHash: ['0b637a33', '081d6d1b', disabled], }, trace: { contentDocumentHash: ['ca9d9c2f'], contentWindowHash: ['ca9d9c2f'], createElementHash: ['77dea834'], getElementByIdHash: ['77dea834'], getImageDataHash: ['77dea834'], toBlobHash: ['77dea834', disabled], toDataURLHash: ['77dea834', disabled], }, cydec: { // [FF, FF Anti OFF, Chrome, Chrome Anti Off, no iframe Chrome, no iframe Chrome Anti Off] contentDocumentHash: ['945b0c78', '15771efa', '403a1a21', '55e9b959'], contentWindowHash: ['945b0c78', '15771efa', '403a1a21', '55e9b959'], createElementHash: ['3dd86d6f', 'cc7cb598', '4237b44c', '1466aaf0', '0cb0c682', '73c662d9', '72b1ee2b', 'ae3d02c9'], getElementByIdHash: ['3dd86d6f', 'cc7cb598', '4237b44c', '1466aaf0', '0cb0c682', '73c662d9', '72b1ee2b', 'ae3d02c9'], getImageDataHash: ['044f14c2', 'db60d7f9', '15771efa', 'db60d7f9', '55e9b959'], toBlobHash: ['044f14c2', '15771efa', 'afec348d', '55e9b959', '0dbbf456'], toDataURLHash: ['ecb498d9', '15771efa', '6b838fb6', 'd19104ec', '6985d315', '55e9b959', 'fe88259f'], }, canvasblocker: { contentDocumentHash: ['98ec858e', 'dbbaf31f'], contentWindowHash: ['98ec858e', 'dbbaf31f'], appendHash: ['98ec858e', 'dbbaf31f'], getImageDataHash: ['98ec858e', 'a2971888', 'dbbaf31f', disabled], toBlobHash: ['9f1c3dfe', 'a2971888', 'dbbaf31f', disabled], toDataURLHash: ['98ec858e', 'a2971888', 'dbbaf31f', disabled], }, chameleon: { appendHash: ['77dea834'], insertAdjacentElementHash: ['77dea834'], insertAdjacentHTMLHash: ['77dea834'], insertAdjacentTextHash: ['77dea834'], prependHash: ['77dea834'], replaceWithHash: ['77dea834'], appendChildHash: ['77dea834'], insertBeforeHash: ['77dea834'], replaceChildHash: ['77dea834'], }, duckduckgo: { toDataURLHash: ['fd00bf5d', '8ee7df22', disabled], toBlobHash: ['fd00bf5d', '8ee7df22', disabled], getImageDataHash: ['fd00bf5d', '8ee7df22', disabled], getByteFrequencyDataHash: ['fd00bf5d', '8ee7df22', disabled], getByteTimeDomainDataHash: ['fd00bf5d', '8ee7df22', disabled], getFloatFrequencyDataHash: ['fd00bf5d', '8ee7df22', disabled], getFloatTimeDomainDataHash: ['fd00bf5d', '8ee7df22', disabled], copyFromChannelHash: ['fd00bf5d', '8ee7df22', disabled], getChannelDataHash: ['fd00bf5d', '8ee7df22', disabled], hardwareConcurrencyHash: ['dfd41ab4'], availHeightHash: ['dfd41ab4'], availLeftHash: ['dfd41ab4'], availTopHash: ['dfd41ab4'], availWidthHash: ['dfd41ab4'], colorDepthHash: ['dfd41ab4'], pixelDepthHash: ['dfd41ab4'], }, // mode: Learn to block new trackers from your browsing privacybadger: { getImageDataHash: ['0cb0c682'], toDataURLHash: ['0cb0c682'], }, privacypossum: { hardwareConcurrencyHash: ['452924d5'], availWidthHash: ['452924d5'], colorDepthHash: ['452924d5'], }, jshelter: { contentDocumentHash: ['0007ab4e', '0b637a33', '866fa7e7', '318390d1'], contentWindowHash: ['0007ab4e', '0b637a33', '866fa7e7', '318390d1'], appendHash: ['0007ab4e', '0b637a33', '866fa7e7', '318390d1'], insertAdjacentElementHash: ['0007ab4e', '0b637a33', '866fa7e7', '318390d1'], insertAdjacentHTMLHash: ['0007ab4e', '0b637a33', '866fa7e7', '318390d1'], prependHash: ['0007ab4e', '0b637a33', '866fa7e7', '318390d1'], replaceWithHash: ['0007ab4e', '0b637a33', '866fa7e7', '318390d1'], appendChildHash: ['0007ab4e', '0b637a33', '866fa7e7', '318390d1'], insertBeforeHash: ['0007ab4e', '0b637a33', '866fa7e7', '318390d1'], replaceChildHash: ['0007ab4e', '0b637a33', '866fa7e7', '318390d1'], hardwareConcurrencyHash: ['dfd41ab4'], }, puppeteerExtra: { contentDocumentHash: ['55e9b959'], contentWindowHash: [ '55e9b959', '50a281b5', // @2.10.0 ], createElementHash: ['55e9b959'], getElementByIdHash: ['55e9b959'], appendHash: ['55e9b959'], insertAdjacentElementHash: ['55e9b959'], insertAdjacentHTMLHash: ['55e9b959'], insertAdjacentTextHash: ['55e9b959'], prependHash: ['55e9b959'], replaceWithHash: ['55e9b959'], appendChildHash: ['55e9b959'], insertBeforeHash: ['55e9b959'], replaceChildHash: ['55e9b959'], getContextHash: ['55e9b959', disabled], toDataURLHash: ['55e9b959', disabled], toBlobHash: ['55e9b959', disabled], getImageDataHash: ['55e9b959'], hardwareConcurrencyHash: ['efbd4cf9', 'a63491fb', 'b011fd1c', '194ecf17', '55e9b959'], }, fakeBrowser: { appendChildHash: ['8dfec2ec', 'f43e6134'], getContextHash: ['83b825ab', 'a63491fb'], toDataURLHash: ['83b825ab', 'a63491fb'], toBlobHash: ['83b825ab', 'a63491fb'], getImageDataHash: ['83b825ab', 'a63491fb'], hardwareConcurrencyHash: ['83b825ab', 'a63491fb'], availHeightHash: ['83b825ab', 'a63491fb'], availLeftHash: ['83b825ab', 'a63491fb'], availTopHash: ['83b825ab', 'a63491fb'], availWidthHash: ['83b825ab', 'a63491fb'], colorDepthHash: ['83b825ab', 'a63491fb'], pixelDepthHash: ['83b825ab', 'a63491fb'], }, } /* Random User-Agent User Agent Switcher and Manager ScriptSafe Windscribe */ await queueEvent(timer) const hash = { // iframes contentDocumentHash: hashMini(prototypeLies['HTMLIFrameElement.contentDocument']), contentWindowHash: hashMini(prototypeLies['HTMLIFrameElement.contentWindow']), createElementHash: hashMini(prototypeLies['Document.createElement']), getElementByIdHash: hashMini(prototypeLies['Document.getElementById']), appendHash: hashMini(prototypeLies['Element.append']), insertAdjacentElementHash: hashMini(prototypeLies['Element.insertAdjacentElement']), insertAdjacentHTMLHash: hashMini(prototypeLies['Element.insertAdjacentHTML']), insertAdjacentTextHash: hashMini(prototypeLies['Element.insertAdjacentText']), prependHash: hashMini(prototypeLies['Element.prepend']), replaceWithHash: hashMini(prototypeLies['Element.replaceWith']), appendChildHash: hashMini(prototypeLies['Node.appendChild']), insertBeforeHash: hashMini(prototypeLies['Node.insertBefore']), replaceChildHash: hashMini(prototypeLies['Node.replaceChild']), // canvas getContextHash: hashMini(prototypeLies['HTMLCanvasElement.getContext']), toDataURLHash: hashMini(prototypeLies['HTMLCanvasElement.toDataURL']), toBlobHash: hashMini(prototypeLies['HTMLCanvasElement.toBlob']), getImageDataHash: hashMini(prototypeLies['CanvasRenderingContext2D.getImageData']), // Audio getByteFrequencyDataHash: hashMini(prototypeLies['AnalyserNode.getByteFrequencyData']), getByteTimeDomainDataHash: hashMini(prototypeLies['AnalyserNode.getByteTimeDomainData']), getFloatFrequencyDataHash: hashMini(prototypeLies['AnalyserNode.getFloatFrequencyData']), getFloatTimeDomainDataHash: hashMini(prototypeLies['AnalyserNode.getFloatTimeDomainData']), copyFromChannelHash: hashMini(prototypeLies['AudioBuffer.copyFromChannel']), getChannelDataHash: hashMini(prototypeLies['AudioBuffer.getChannelData']), // Hardware hardwareConcurrencyHash: hashMini(prototypeLies['Navigator.hardwareConcurrency']), // Screen availHeightHash: hashMini(prototypeLies['Screen.availHeight']), availLeftHash: hashMini(prototypeLies['Screen.availLeft']), availTopHash: hashMini(prototypeLies['Screen.availTop']), availWidthHash: hashMini(prototypeLies['Screen.availWidth']), colorDepthHash: hashMini(prototypeLies['Screen.colorDepth']), pixelDepthHash: hashMini(prototypeLies['Screen.pixelDepth']), } data.extensionHashPattern = Object.keys(hash).reduce((acc, key) => { const val = hash[key] if (val == disabled) { return acc } acc[key.replace('Hash', '')] = val return acc }, {}) const getExtension = ({ pattern, hash, prototypeLiesLen }) => { const { noscript, trace, cydec, canvasblocker, chameleon, duckduckgo, privacybadger, privacypossum, jshelter, puppeteerExtra, fakeBrowser, } = pattern const disabled = 'c767712b' if (prototypeLiesLen) { if (prototypeLiesLen >= 7 && trace.contentDocumentHash.includes(hash.contentDocumentHash) && trace.contentWindowHash.includes(hash.contentWindowHash) && trace.createElementHash.includes(hash.createElementHash) && trace.getElementByIdHash.includes(hash.getElementByIdHash) && trace.toDataURLHash.includes(hash.toDataURLHash) && trace.toBlobHash.includes(hash.toBlobHash) && trace.getImageDataHash.includes(hash.getImageDataHash)) { return 'Trace' } if (prototypeLiesLen >= 7 && cydec.contentDocumentHash.includes(hash.contentDocumentHash) && cydec.contentWindowHash.includes(hash.contentWindowHash) && cydec.createElementHash.includes(hash.createElementHash) && cydec.getElementByIdHash.includes(hash.getElementByIdHash) && cydec.toDataURLHash.includes(hash.toDataURLHash) && cydec.toBlobHash.includes(hash.toBlobHash) && cydec.getImageDataHash.includes(hash.getImageDataHash)) { return 'CyDec' } if (prototypeLiesLen >= 6 && canvasblocker.contentDocumentHash.includes(hash.contentDocumentHash) && canvasblocker.contentWindowHash.includes(hash.contentWindowHash) && canvasblocker.appendHash.includes(hash.appendHash) && canvasblocker.toDataURLHash.includes(hash.toDataURLHash) && canvasblocker.toBlobHash.includes(hash.toBlobHash) && canvasblocker.getImageDataHash.includes(hash.getImageDataHash)) { return 'CanvasBlocker' } if (prototypeLiesLen >= 9 && chameleon.appendHash.includes(hash.appendHash) && chameleon.insertAdjacentElementHash.includes(hash.insertAdjacentElementHash) && chameleon.insertAdjacentHTMLHash.includes(hash.insertAdjacentHTMLHash) && chameleon.insertAdjacentTextHash.includes(hash.insertAdjacentTextHash) && chameleon.prependHash.includes(hash.prependHash) && chameleon.replaceWithHash.includes(hash.replaceWithHash) && chameleon.appendChildHash.includes(hash.appendChildHash) && chameleon.insertBeforeHash.includes(hash.insertBeforeHash) && chameleon.replaceChildHash.includes(hash.replaceChildHash)) { return 'Chameleon' } if (prototypeLiesLen >= 7 && duckduckgo.toDataURLHash.includes(hash.toDataURLHash) && duckduckgo.toBlobHash.includes(hash.toBlobHash) && duckduckgo.getImageDataHash.includes(hash.getImageDataHash) && duckduckgo.getByteFrequencyDataHash.includes(hash.getByteFrequencyDataHash) && duckduckgo.getByteTimeDomainDataHash.includes(hash.getByteTimeDomainDataHash) && duckduckgo.getFloatFrequencyDataHash.includes(hash.getFloatFrequencyDataHash) && duckduckgo.getFloatTimeDomainDataHash.includes(hash.getFloatTimeDomainDataHash) && duckduckgo.copyFromChannelHash.includes(hash.copyFromChannelHash) && duckduckgo.getChannelDataHash.includes(hash.getChannelDataHash) && duckduckgo.hardwareConcurrencyHash.includes(hash.hardwareConcurrencyHash) && duckduckgo.availHeightHash.includes(hash.availHeightHash) && duckduckgo.availLeftHash.includes(hash.availLeftHash) && duckduckgo.availTopHash.includes(hash.availTopHash) && duckduckgo.availWidthHash.includes(hash.availWidthHash) && duckduckgo.colorDepthHash.includes(hash.colorDepthHash) && duckduckgo.pixelDepthHash.includes(hash.pixelDepthHash)) { return 'DuckDuckGo' } if (prototypeLiesLen >= 2 && privacybadger.getImageDataHash.includes(hash.getImageDataHash) && privacybadger.toDataURLHash.includes(hash.toDataURLHash)) { return 'Privacy Badger' } if (prototypeLiesLen >= 3 && privacypossum.hardwareConcurrencyHash.includes(hash.hardwareConcurrencyHash) && privacypossum.availWidthHash.includes(hash.availWidthHash) && privacypossum.colorDepthHash.includes(hash.colorDepthHash)) { return 'Privacy Possum' } if (prototypeLiesLen >= 2 && noscript.contentDocumentHash.includes(hash.contentDocumentHash) && noscript.contentWindowHash.includes(hash.contentDocumentHash) && noscript.getContextHash.includes(hash.getContextHash) && // distinguish NoScript from JShelter hash.hardwareConcurrencyHash == disabled) { return 'NoScript' } if (prototypeLiesLen >= 14 && jshelter.contentDocumentHash.includes(hash.contentDocumentHash) && jshelter.contentWindowHash.includes(hash.contentDocumentHash) && jshelter.appendHash.includes(hash.appendHash) && jshelter.insertAdjacentElementHash.includes(hash.insertAdjacentElementHash) && jshelter.insertAdjacentHTMLHash.includes(hash.insertAdjacentHTMLHash) && jshelter.prependHash.includes(hash.prependHash) && jshelter.replaceWithHash.includes(hash.replaceWithHash) && jshelter.appendChildHash.includes(hash.appendChildHash) && jshelter.insertBeforeHash.includes(hash.insertBeforeHash) && jshelter.replaceChildHash.includes(hash.replaceChildHash) && jshelter.hardwareConcurrencyHash.includes(hash.hardwareConcurrencyHash)) { return 'JShelter' } if (prototypeLiesLen >= 13 && puppeteerExtra.contentDocumentHash.includes(hash.contentDocumentHash) && puppeteerExtra.contentWindowHash.includes(hash.contentWindowHash) && puppeteerExtra.createElementHash.includes(hash.createElementHash) && puppeteerExtra.getElementByIdHash.includes(hash.getElementByIdHash) && puppeteerExtra.appendHash.includes(hash.appendHash) && puppeteerExtra.insertAdjacentElementHash.includes(hash.insertAdjacentElementHash) && puppeteerExtra.insertAdjacentHTMLHash.includes(hash.insertAdjacentHTMLHash) && puppeteerExtra.insertAdjacentTextHash.includes(hash.insertAdjacentTextHash) && puppeteerExtra.prependHash.includes(hash.prependHash) && puppeteerExtra.replaceWithHash.includes(hash.replaceWithHash) && puppeteerExtra.appendChildHash.includes(hash.appendChildHash) && puppeteerExtra.insertBeforeHash.includes(hash.insertBeforeHash) && puppeteerExtra.contentDocumentHash.includes(hash.contentDocumentHash) && puppeteerExtra.replaceChildHash.includes(hash.replaceChildHash) && puppeteerExtra.getContextHash.includes(hash.getContextHash) && puppeteerExtra.toDataURLHash.includes(hash.toDataURLHash) && puppeteerExtra.toBlobHash.includes(hash.toBlobHash) && puppeteerExtra.getImageDataHash.includes(hash.getImageDataHash) && puppeteerExtra.hardwareConcurrencyHash.includes(hash.hardwareConcurrencyHash)) { return 'puppeteer-extra' } if (prototypeLiesLen >= 12 && fakeBrowser.appendChildHash.includes(hash.appendChildHash) && fakeBrowser.getContextHash.includes(hash.getContextHash) && fakeBrowser.toDataURLHash.includes(hash.toDataURLHash) && fakeBrowser.toBlobHash.includes(hash.toBlobHash) && fakeBrowser.getImageDataHash.includes(hash.getImageDataHash) && fakeBrowser.hardwareConcurrencyHash.includes(hash.hardwareConcurrencyHash) && fakeBrowser.availHeightHash.includes(hash.availHeightHash) && fakeBrowser.availLeftHash.includes(hash.availLeftHash) && fakeBrowser.availTopHash.includes(hash.availTopHash) && fakeBrowser.availWidthHash.includes(hash.availWidthHash) && fakeBrowser.colorDepthHash.includes(hash.colorDepthHash) && fakeBrowser.pixelDepthHash.includes(hash.pixelDepthHash)) { return 'FakeBrowser' } return } return } // @ts-ignore data.extension = getExtension({ pattern, hash, prototypeLiesLen }) logTestResult({ time: timer.stop(), test: 'resistance', passed: true }) return data } catch (error) { logTestResult({ test: 'resistance', passed: false }) captureError(error) return } } export function resistanceHTML(fp) { if (!fp.resistance) { return `
Resistance
privacy: ${HTMLNote.BLOCKED}
security: ${HTMLNote.BLOCKED}
mode: ${HTMLNote.BLOCKED}
extension: ${HTMLNote.BLOCKED}
` } const { resistance: data, } = fp const { $hash, privacy, security, mode, extension, extensionHashPattern, engine, } = data || {} const securitySettings = !security || Object.keys(security).reduce((acc, curr) => { if (security[curr]) { acc[curr] = 'enabled' return acc } acc[curr] = 'disabled' return acc }, {}) const browserIcon = ( /brave/i.test(privacy) ? '' : /tor/i.test(privacy) ? '' : /firefox/i.test(privacy) ? '' : '' ) const extensionIcon = ( /blink/i.test(engine) ? '' : /gecko/i.test(engine) ? '' : '' ) return `
${performanceLogger.getLog().resistance} Resistance${hashSlice($hash)}
privacy: ${privacy ? `${browserIcon}${privacy}` : HTMLNote.UNKNOWN}
security: ${ !security ? HTMLNote.UNKNOWN : modal( 'creep-resistance', 'Security

'+ Object.keys(securitySettings).map((key) => `${key}: ${''+securitySettings[key]}`).join('
'), hashMini(security), ) }
mode: ${mode || HTMLNote.UNKNOWN }
extension: ${ !Object.keys(extensionHashPattern || {}).length ? HTMLNote.UNKNOWN : modal( 'creep-extension', 'Pattern

'+ Object.keys(extensionHashPattern).map((key) => `${key}: ${''+extensionHashPattern[key]}`).join('
'), (extension ? `${extensionIcon}${extension}` : hashMini(extensionHashPattern)), ) }
` }