Author here: This is the 2nd blog post in a series about anti-detect browsers.<p>Anti-detect browsers are browsers that integrate features that aim to bypass anti-fraud/bot detection systems, such as:
- native proxies integration;<p>- anti-fingerprinting/fingerprinting randomization;<p>- multi-profiles management (to have separate identities linked to different fingerprints and locations)<p>In this blog post, I analyze the Undetectable anti-detect browser, the JS script it injects to modify the fingerprint, and lower level changes done at the c++ level within the browser. In the end, I show how you can craft a simple JS challenge that exploits side effects of Undetectable to detect it.<p>Disclaimer: I know anti-detect browsers can also be used for privacy purposes. The purpose of this article is to cover the main mechanisms used by these browsers that can be used to bypass security systems and how websites can protect against these techniques.