Since yt-dlp simulates a browser, can it be fingerprinted in the same ways (e.g. canvas and audiocontext)?
I know that wget and curl can mitigate fingerprinting (aside from http header and user agent), but will yt-dlp give away more data?
Tag Archives: fingerprinting
How does reddit maintain visit history after clearing cache, cookies and de-fingerprinting? [closed]
Setup: I clear cache and history in firefox, then visit reddit.com in a private window and browse/read three very specific subreddits while NOT logged in. Then, I close that private window entirely and re-open a new one. When I visit re… Continue reading How does reddit maintain visit history after clearing cache, cookies and de-fingerprinting? [closed]
Fingerprinting Remote BACnet devices
I am trying to understand how does engines like Shodan is able to fingerprint remote Bacnet devices with the responses as shown in the screenshot below.
I tried using a sample python code using BAC0 library.
import BAC0
bacnet = BAC0.lite… Continue reading Fingerprinting Remote BACnet devices
How do I get the lowest amount of identifiable information on Cover Your Tracks with a Firefox based browser (Tor)? [closed]
I played around with the about:config settings in the Tor and Firefox browser and tried to test it on Cover Your Tracks.
The lowest point I got was with 5 bits of identifiable information, with Tor while using the following modifcations:
a… Continue reading How do I get the lowest amount of identifiable information on Cover Your Tracks with a Firefox based browser (Tor)? [closed]
What are some ways to prevent an application from getting a device "fingerprint"? [migrated]
Despite using a VPN, an application natively running on an Android device can get lots of information about its host (like hardware IDs or sim card information) which defeats the whole point of using a VPN with the purpose of anonymizing y… Continue reading What are some ways to prevent an application from getting a device "fingerprint"? [migrated]
Google & YouTube Browser Fingerprinting [closed]
Does YouTube and or Google use browser fingerprinting? For instance using JavaScript to test various characteristics of the browser like how the canvas looks the fonts installed webtl data etc to create a unique hash to identify a user wit… Continue reading Google & YouTube Browser Fingerprinting [closed]
Is there any secure way to make sure that a request comes from a browser and via a specific domain (by just using frontend)?
Let us assume that we have a public API, for example, company.com/publicEndpoint, that can accept requests from any source. Various websites, like foo.com and bar.com, use JavaScripts that call this endpoint to retrieve a list of strings, … Continue reading Is there any secure way to make sure that a request comes from a browser and via a specific domain (by just using frontend)?
TLS Private Key Secured with Hardware Fingerprint
I worked for a company where our TLS Private Key was accidentally leaked to the Internet and it was a big mess. The strategy the security team came up for avoiding this in the future was "be more careful who you trust with access to t… Continue reading TLS Private Key Secured with Hardware Fingerprint
How to build a simple but secure password manager using a fingerprint sensor [migrated]
I’m building a simple CLI password manager. My current version uses getpass to securely read the master password in the shell which will be used to decrypt a stored password and copy it to your clipboard.
Since I’m using a Mac I thought it… Continue reading How to build a simple but secure password manager using a fingerprint sensor [migrated]
How can websites fingerprint the company I work for?
During my work day, I came upon a website that had a popup that identified the company I work for(basically saying "contact us X company"). This website was never previously visited, cookies were blocked and the company I work fo… Continue reading How can websites fingerprint the company I work for?