
What browser fingerprinting tests like Amiunique and Browserleaks really show, and what they miss
If you’ve ever visited a site like amiunique.org, browserleaks.com, or pixelscan.net, you’ve probably seen a
Antoine is currently the Head of Research at Castle. In this role, he focuses on improving Castle's bot detection engine using different approaches, including behavioral detection, and fingerprinting.
If you’ve ever visited a site like amiunique.org, browserleaks.com, or pixelscan.net, you’ve probably seen a
Headless Chrome bots controlled by Selenium remain a staple in the bot developer’s toolkit in 2025. While newer frameworks
Most disposable email services are easy to detect. They use obvious domains like tempmail.xyz or tmxttvmail.com, which are
The other day, I bought sneaker proxies by mistake. I know, I know, how do you accidentally buy sneaker proxies?
CAPTCHAs are the most recognizable anti-bot mechanism on the web. Whether you're logging into a game, signing up
Fake account creation is one of the most persistent forms of online abuse. What used to be a fringe tactic
Credential stuffing remains one of the most scalable and persistent threats on the internet. While defenders have improved at catching
This is the third edition of our monthly tracker highlighting email domains linked to fraudulent activity. Just like in Mays’
Every time there's a Hacker News thread about bots, bot detection, or CAPTCHAs, a familiar complaint shows up:
Browser automation tools like Puppeteer, Playwright, and Selenium are widely used for testing, scraping, and other automation tasks. However, because
A recent Hacker News post looked at the reverse engineering of TikTok’s JavaScript virtual machine (VM). Many commenters assumed
This is the second edition of our monthly tracker highlighting email domains linked to fraudulent activity. Just like in April’