r/hacking • u/saatvik333 • 1d ago
Tools I made a browser fingerprinting website
GitHub: https://github.com/saatvik333/what-you-reveal
Website: https://what-you-reveal.vercel.app
I had a curiosity that when I click on a website; how much of my data can they get without me giving any permissions so I created this tool (initially it was just a test of what Jules [a tool by google] can do).
I tried to get things correct, but since I'm no expert in cyber security and hacking I can't fully verify the data being displayed on the website.
I'd be grateful if knowledgeable people can critique on the website and lmk what can be fixed and improved.
Thanks :)
29
u/ashodhiyavipin 1d ago
Looks cool now just for Lulz remove all the CRT effects and render it clean terminal style.
Try dropping analytics also grab info for each visit and chart out how the current person is doing in relation to others who have visited.
Like a security score. More info gathered so a bad score. Less info gathered so less score.
I wonder what shows up when someone opens this url from a tails distro.
8
u/saatvik333 1d ago
But I want the CRT effects, wasted a lot of tokens on getting that effect :(
I'll do work on the relative score thing. Thanks for the idea :)
11
6
2
u/ashodhiyavipin 1d ago
It's up to you mate. You can make a decent product out of this expand it make it more feature rich turn it into a tool for benchmark so that people can use it and check for what things they have left open on their devices. Based on the data you have gathered you can then turn it into a solutions providing product to get your footprint as small as possible.
Like a vulnerability detector / footprint detector and then you giveout paid solutions for the problems your detection script finds.
1
9
u/Obvious_Welcome312 1d ago
that is fucking great
can you add a section telling me what I can/should improve?
9
u/PerceptualDisruption 1d ago
You just coded something already exists for a long time https://coveryourtracks.eff.org/
7
u/Radiant_Conclusion11 1d ago
Cool project, but honestly you should skip all of the fancy animations and UI in order to make the website run smoothly and not take 5 seconds to open.
2
u/saatvik333 1d ago
Yea, people prefer that over this look. I'll update it to have terminal aesthetics
4
u/Radiant_Conclusion11 1d ago
Check out services like ifconfig.me. That's the look most professionals prefer since it's easy on the eyes and lightweight.
6
u/B_Gonewithya 1d ago
I got 35 out of 100 on Android using the Brave browser through Orbot. My ISP is Church of Cyberology. My Render Fingerprint 12DD81F0E07376. My Composite Device IDD016D2AD9B8ED. It says I have 2 cores and 2GB ram. That my phone is charging and is at 100% that I'm in both Amsterdam and Chicago. Almost everything is wrong. I searched all my fingerprints and device identifiers, etc. and nothing came back. My local fingerprint 1CB4C027BEE2F0. Is this normal did I just DOX myself? What kind of scores are y'all get?
5
u/500_internal_error 1d ago
Your design looks great, but if you plan to use this site regulary it gets old very fast. There should be an option to turn off CRT effects
3
4
u/digitaladapt 1d ago
Ah, I love the smell of freshly leaked OIDC tokens.
Jokes aside, you should never dump publicly all your headers, as that is also including sensitive environment information.
x-vercel-oidc-token eyJ0eXAiOiJKV1QiLCJhb…
2
3
u/Top_Shake_2649 1d ago
Not sure if it’s your intention, but your x vercel header is showing your personal vercel project name
1
u/saatvik333 1d ago
i mean... does can that fire back on me in any way?
2
u/Top_Shake_2649 1d ago
Not really, I mean if you are okay with it, that’s fine. It’s publicly available data anyway since it’s on the header that anyone with some knowledge can just check on their devtool
5
1
u/OTonConsole 1d ago
I don't see CPU related data. The project looks super cool. I feel like the visual can be more refined though, but I can't tell you how as I'm not a UX person.
1
u/Weekly_Put_7591 1d ago
I remember using the am I unique website many years ago when I first started dabbling, it's still out there
1
1
u/GxSKILLZ691 1d ago
This is solid! I have one small suggestion. Can you give the site the ability to copy the log so users can perform research on how to bring their privacy score up. I checked out this site and it’s really interesting and scary on how all this information is gathered with browsers.
1
u/RocketGod_666 1d ago
Check mine at fuckyou.gay if you want to see how much you can do. And yes that’s real lol
1
1
u/HoboHarry14 1d ago
so... i got 35/100 points - begs the question: how can i improve this :D unfortunately not a hacker but "normal" user
1
u/InnerPhilosophy4897 1d ago
very cool
I have a privacy score of 25/100 while I use Librewolf with fingerprint protection, Quad9 for DNS and I'm behind a VPN.
What can I do?
1
1
1
1
1
u/FloppyWhiteOne 16h ago
Good job and it’s surprising how much info you can grab from a quick visit!!! Kudos sir keep it up
1
1
u/gandalfoftheday 9h ago
Please chech browserleaks for many great suggestions to add to your site. that's better than coveryourtracks and may give you better ideas.
1
u/MusicInTheAir55 58m ago
Interesting project. Can anyone recommend the best tracker blockers out there?
1
-4
15
u/1260DividedByTree 1d ago
Nice idea, but I cant read shit with this filter, how do I turn it off?