me/omegafox
1
0
Fork 0
mirror of https://forge.fsky.io/oneflux/omegafox.git synced 2026-02-10 06:22:03 -08:00
Code Issues Projects Releases Packages Wiki Activity Actions

README: Update tests & TODO

Browse source
This commit is contained in:
daijro 2024-09-29 17:59:25 -05:00
parent 7d825e53d9
commit 110eb970c9
1 changed files with 31 additions and 30 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

61
README.md
View file

@ -66,10 +66,10 @@ Camoufox is built on top of Firefox/Juggler instead of Chromium because:
### What's planned? ### What's planned?
- Continue research on potential leaks - Continue research on potential leaks
- Remote hosting Camoufox as a Playwright server
- Integrate into [hrequests](https://github.com/daijro/hrequests) - Integrate into [hrequests](https://github.com/daijro/hrequests)
- Human-like typing & mouse movement - Human-like typing & mouse movement
- WebGL fingerprint spoofing through software rendering - WebGL fingerprint spoofing through ANGLE rendering
- Built in TLS fingerprinting protection using [Hazetunnel](https://github.com/daijro/hazetunnel)
- Create integration tests - Create integration tests
- Chromium port (long term) - Chromium port (long term)
@ -462,34 +462,35 @@ This makes it **impossible** for a page to detect the presence of Playwright thr
Camoufox performs well against every major WAF I've tested. (Original test sites from [Botright](https://github.com/Vinyzu/botright/?tab=readme-ov-file#browser-stealth)) Camoufox performs well against every major WAF I've tested. (Original test sites from [Botright](https://github.com/Vinyzu/botright/?tab=readme-ov-file#browser-stealth))
| Test | Status | | Test | Status |
| -------------------------------------------------------------------------------------------------- | ------------------------------------------------- | | -------------------------------------------------------------------------------------------------- | --------------------------------------------------------- |
| **reCaptcha Score** | ✔️ | | [**CreepJS**](https://abrahamjuliot.github.io/creepjs/) | ✔️ 71.5%. Successfully spoofs all OS predictions. |
| ‣ [nopecha.com](https://nopecha.com/demo/recaptcha) | ✔️ (v2-Hardest is unstable on Chrome fingerprint) | | [**Rebrowser Bot Detector**](https://bot-detector.rebrowser.net/) | ✔️ All tests pass. |
| ‣ [recaptcha-demo.appspot.com](https://recaptcha-demo.appspot.com/recaptcha-v3-request-scores.php) | ✔️ 0.9 | | [**BrowserScan**](https://browserscan.net/) | ✔️ 100%. Spoofs all geolocation & locale proxy detection. |
| ‣ [berstend.github.io](https://berstend.github.io/static/recaptcha/v3-programmatic.html) | ✔️ 0.9 | | **reCaptcha Score** | ✔️ |
| [**CreepJS**](https://abrahamjuliot.github.io/creepjs/) | ✔️ 71.5% (56% with Chrome fingerprint) | | ‣ [nopecha.com](https://nopecha.com/demo/recaptcha) | ✔️ |
| **DataDome** | ✔️ | | ‣ [recaptcha-demo.appspot.com](https://recaptcha-demo.appspot.com/recaptcha-v3-request-scores.php) | ✔️ 0.9 |
| ‣ [hermes.com](https://www.hermes.com/us/en/) | ✔️ | | ‣ [berstend.github.io](https://berstend.github.io/static/recaptcha/v3-programmatic.html) | ✔️ 0.9 |
| ‣ [antoinevastel.com](https://antoinevastel.com/bots/datadome) | ✔️ | | **DataDome** | ✔️ |
| **Imperva** | ✔️ | | ‣ [hermes.com](https://www.hermes.com/us/en/) | ✔️ |
| ‣ [ticketmaster.es](https://www.ticketmaster.es/) | ✔️ | | ‣ [antoinevastel.com](https://antoinevastel.com/bots/datadome) | ✔️ |
| **Cloudflare** | ✔️ | | **Imperva** | ✔️ |
| ‣ [Turnstile](https://nopecha.com/demo/turnstile) | ✔️ | | ‣ [ticketmaster.es](https://www.ticketmaster.es/) | ✔️ |
| ‣ [Interstitial](https://nopecha.com/demo/cloudflare) | ✔️ Unstable on Chrome fingerprints | | **Cloudflare** | ✔️ |
| **WebRTC IP Spoofing** | ✔️ | | ‣ [Turnstile](https://nopecha.com/demo/turnstile) | ✔️ |
| ‣ [Browserleaks WebRTC](https://browserleaks.net/webrtc) | ✔️ | | ‣ [Interstitial](https://nopecha.com/demo/cloudflare) | ✔️ |
| ‣ [CreepJS WebRTC](https://abrahamjuliot.github.io/creepjs/) | ✔️ | | **WebRTC IP Spoofing** | ✔️ |
| ‣ [BrowserScan WebRTC](https://www.browserscan.net/webrtc) | ✔️ | | ‣ [Browserleaks WebRTC](https://browserleaks.net/webrtc) | ✔️ Spoofs public IP correctly. |
| **Font Fingerprinting** | ✔️ | | ‣ [CreepJS WebRTC](https://abrahamjuliot.github.io/creepjs/) | ✔️ Spoofs Host & STUN IP correctly. |
| ‣ [Browserleaks Fonts](https://browserleaks.net/fonts) | ✔️ | | ‣ [BrowserScan WebRTC](https://www.browserscan.net/webrtc) | ✔️ Spoofs Host & STUN IP correctly. |
| ‣ [CreepJS TextMetrics](https://abrahamjuliot.github.io/creepjs/tests/fonts.html) | ✔️ | | **Font Fingerprinting** | ✔️ |
| [**SannySoft**](https://bot.sannysoft.com/) | ✔️ | | ‣ [Browserleaks Fonts](https://browserleaks.net/fonts) | ✔️ Rotates all metrics. |
| [**Incolumitas**](https://bot.incolumitas.com/) | ✔️ 0.8-1.0 | | ‣ [CreepJS TextMetrics](https://abrahamjuliot.github.io/creepjs/tests/fonts.html) | ✔️ Rotates all metrics. |
| [**Fingerprint.com**](https://fingerprint.com/products/bot-detection/) | ✔️ | | [**Incolumitas**](https://bot.incolumitas.com/) | ✔️ 0.8-r1.0 |
| [**IpHey**](https://iphey.com/) | ✔️ | | [**SannySoft**](https://bot.sannysoft.com/) | ✔️ |
| [**BrowserScan**](https://browserscan.net/) | ✔️ | | [**Fingerprint.com**](https://fingerprint.com/products/bot-detection/) | ✔️ |
| [**Bet365**](https://www.bet365.com/#/AC/B1/C1/D1002/E79147586/G40/) | ✔️ | | [**IpHey**](https://iphey.com/) | ✔️ |
| [**Bet365**](https://www.bet365.com/#/AC/B1/C1/D1002/E79147586/G40/) | ✔️ |
Camoufox does **not** fully support injecting Chromium fingerprints. Some WAFs (such as [Interstitial](https://nopecha.com/demo/cloudflare)) test for Spidermonkey engine behavior, which is impossible to spoof. Camoufox does **not** fully support injecting Chromium fingerprints. Some WAFs (such as [Interstitial](https://nopecha.com/demo/cloudflare)) test for Spidermonkey engine behavior, which is impossible to spoof.