Collaborate Disseminate
Background.
Context. I use Firefox, Google Chrome, or Chromium on Linux.
Question. How to have my browser resist the JA3 fingerprint, so that sites don’t identify me by it?
Thoughts. I guess it may involve a way to randomise the way my cli… Continue reading How to resist JA3 fingerprinting while browsing using common browsers (e.g. Firefox, Chrome, etc)
I have used Nessus to determine that a client’s Cisco ASA is vulnerable to a Read-Only Path Traversal Vulnerability. So far I have tried viewing the logon portal page source code, nmap -sV -A <host>, the nmap script http-cisco-anycon… Continue reading Fingerprinting Cisco ASA Device
I would like to know if a website is fingerprinting me via WebGL,
first of all, knowing if the site is doing it
Knowing when they send the request to my browser
Knowing what value I am reporting to the site
Important thing to notice, in … Continue reading How could I know if a website is fingerprinting you via WebGL?
I’m all out of ideas. I just need one email address added to my personal facebook account.
I’ve attempted adding email addresses using four different mainstream email accounts. A confirmation never arrives to any address mailbox to verify … Continue reading Is facebook deterring account info from being updated if user tracking, fingerprinting, telemetry et al. is hampered? [closed]
Number of biometric samples required to form an exhaustive set of fingerprint hashes?
Slight variations in the sample produce different hash values of the sample data. The answer linked below indicates that enough different samples might p… Continue reading Number of biometric samples required to form an exhaustive set of fingerprint hashes?
My project is to find out how to detect HTTPS interception/mitm and create some sort of application using detection techniques. One of the ways I was thinking of is a active desktop application to listen in on the connections between clien… Continue reading Application to detect SSL certificate fingerprint differences
If I use the same machine (my PC) but with a different IP address and a different browser that I have never used to visit a site, will that site still be able to identify me? I don’t understand the browser fingerprinting thing that well. T… Continue reading How do I assure that a site that I visit does not know I have been there before?
I’ve noticed a lot of phones (not to mention, other devices) have built in fingerprint sensors these days.
Do these devices store information in such a way that your fingerprint could be reconstructed by someone with access to it?
Continue reading Can a fingerprint be reconstructed from a device that uses it for authentication?
I’ve noticed a lot of phones (not to mention, other devices) have built in fingerprint sensors these days.
Do these devices store information in such a way that your fingerprint could be reconstructed by someone with access to it?
Continue reading Can a fingerprint be reconstructed from a device that uses it for authentication?
WebRTC manages to leak my IP when I use proxy, but when I use VPN it only shows VPN server’s IP (both proxy and VPN were system-wide). What’s the key difference? Google Chrome was used in both tests (webRTC leak test). https://browserleask… Continue reading Why does my IP being leaked with system-wide proxy through webTRC, but it doesn’t happen when I use system-wide VPN