1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Need to defeat browser/device fingerprinting

Discussion in 'Black Hat SEO' started by johnnymalik, Mar 15, 2016.

  1. johnnymalik

    johnnymalik Newbie

    Joined:
    Mar 15, 2016
    Messages:
    6
    Likes Received:
    0
    Like the title says...I have read up a bit about how this type of identification works, it appears quite hard to fool. I take surveys on a certain website and even though I change my IP address, the website can still identify me. How do I beat this?
     
  2. Porridge

    Porridge Registered Member

    Joined:
    Sep 12, 2013
    Messages:
    78
    Likes Received:
    21
    Do you clear cookies? Spoof user agent string? Is your payment info the same?
     
    • Thanks Thanks x 1
  3. johnnymalik

    johnnymalik Newbie

    Joined:
    Mar 15, 2016
    Messages:
    6
    Likes Received:
    0
    Yup. Clear cookies, flash cookies, use a addon for firefox to spoof the user agent to look like everything from playstation to chrome...and no luck. Also tried using different proxies, no success. The survey doesn't require payment info, its for a customer satisfaction site. Yes, lame, so go ahead and judge me ;)
     
  4. Galleta

    Galleta Regular Member

    Joined:
    Dec 7, 2015
    Messages:
    270
    Likes Received:
    88
    The text you enter? Accounts, emails?
    Subnet of IPs?
    MAC-Adress?
     
    • Thanks Thanks x 1
  5. johnnymalik

    johnnymalik Newbie

    Joined:
    Mar 15, 2016
    Messages:
    6
    Likes Received:
    0
    The survey doesn't go by email. I'd post the address but it gets blocked by the auto-mod software. I thought that by using a proxy that anything with IP or MAC address would be filtered out? There is definitely a way that the company is filtering surveys by some sort of device and browser fingerprinting.
     
  6. Galleta

    Galleta Regular Member

    Joined:
    Dec 7, 2015
    Messages:
    270
    Likes Received:
    88
    Depends really on the kind of proxy and program you use. They could also blacklist your DNS, if you dont resolve hostnames through the proxy.

    Assuming it is not the texts you are trying to post, I would recommend trying it in a VM (virtual machine) with a VPN and proxy (different subnet) after it. The proxy IP should also not be blacklisted (use mxtoolbox to check)
     
    • Thanks Thanks x 1
  7. johnnymalik

    johnnymalik Newbie

    Joined:
    Mar 15, 2016
    Messages:
    6
    Likes Received:
    0
    I've tried once to download a VM and do the whole proxy bit, but it somehow still recognized me. Is there any kind of program out there which would spoof a device/browser fingerprint out there for free or cheap? I've seen a couple of programs out there but they were exorbitantly expensive.
     
  8. Des_cartes

    Des_cartes Junior Member

    Joined:
    Jan 19, 2012
    Messages:
    160
    Likes Received:
    64
    Use this to make sure the IP is not leaking >> https://whoer.net/ (make sure to use the extended test and to click on the run button).
    WebRTC must be disabled, the timezone of the machine and ip must be the same, the IP should be residential, etc...


    And for fuck's sake stop telling people to spoof their MAC address!
     
    • Thanks Thanks x 4
  9. johnnymalik

    johnnymalik Newbie

    Joined:
    Mar 15, 2016
    Messages:
    6
    Likes Received:
    0
    I tested a couple of the proxies that I have used, and IP address does not appear to leak thru. I know that a couple of the places involved in the fingerprinting or tracking are Browserhawk and New Relic, if that's good for anything. I figured that out when I dissected the traffic coming in from the survey site and then looked the people up. Thanks for the IP tool, I will use this again in the future.
     
  10. johnnymalik

    johnnymalik Newbie

    Joined:
    Mar 15, 2016
    Messages:
    6
    Likes Received:
    0
    BTW I have already tried to disable JavaScript, but doing so automatically blocks you from even taking the survey
     
  11. Porridge

    Porridge Registered Member

    Joined:
    Sep 12, 2013
    Messages:
    78
    Likes Received:
    21
    This. They can't know your MAC address unless they have software installed on your computer. This is not something your browser sends to the site.
     
    • Thanks Thanks x 1
  12. Des_cartes

    Des_cartes Junior Member

    Joined:
    Jan 19, 2012
    Messages:
    160
    Likes Received:
    64
    If you want a real solution to avoid defeat most fingerprinting securities you should search for AntiDetect (you should be able to find a cracked version) and FraudFox (only available on the DarkNet but easy to find, at ~$100/month), both are software made especially for that.
     
    • Thanks Thanks x 3
  13. Galleta

    Galleta Regular Member

    Joined:
    Dec 7, 2015
    Messages:
    270
    Likes Received:
    88
    Really no need for that. A VM, a VPN, Proxifier (using non blacklisted residential dynamic! Socks5 or SSH socks5 proxy after the VPN and resolving hostnames through proxy!), UserAgent Switcher for Firefox, deleting cookies (CCleaner), deactivate Java (not javascript), deactivating WebRTC, maybe using Perfect Privacy VPN Manager (together with their VPN service), should cover everything.
    and here the direct link: http://whoer.net/ext
    blacklist check: http://mxtoolbox.com/blacklists.aspx
     
    • Thanks Thanks x 1
  14. taleeto

    taleeto Registered Member

    Joined:
    Mar 9, 2015
    Messages:
    68
    Likes Received:
    7
    Has anyone figured out a way to remain undetected with WebRTC and Flash/Java enabled?
     
  15. sergenthw

    sergenthw Regular Member

    Joined:
    May 19, 2016
    Messages:
    224
    Likes Received:
    38
    Wow so much thanks for your tut guys.
    BTW can I ask some questions?
    1. Does Chrome can send my MAC address to Google?
    2. Does Wireshark help you keeping you anonymous?
    3. When I checked my VPN at http://ipleak.net it says my DNS is leaking. How to technically fix this?
    4. When I remote connect Amazon Web Service (AWS) VPS, and go to survey site, It says "You are using proxy!" But it should have said "You are using VPS!"
    So controlling VPS from my home some how leaks my ip?
    But I doubt this and my best guess so far is that The survey site's owner blacklisted famous VPS zone (ip range or hostname)
    Question is, How can I disguise AWS VPS as 'Normal PC'?

    Sorry for too many questions, but I am really curious :p
     
  16. BloodyNinja

    BloodyNinja Power Member

    Joined:
    Oct 28, 2013
    Messages:
    583
    Likes Received:
    546
    Location:
    Deeptown
    There are some certain fingerprints that depend on your hardware. So if you have multiple VMs on the same hardware, the fingerprints will stay the same.

    You may want to check http://whoer.net, http://browserleaks.com/canvas tests and also play a bit with the free version of Multiloginapp http://multiloginapp.com

    I plan to make a brief common browser fingerprint overview soon