├── README.md
└── capsolver.jpg


/README.md:
--------------------------------------------------------------------------------
  1 | # Curated anti-detect tools list  
  2 | Just making a tools list for my project, feel free to send pull requests :) 
  3 | While looking around, it may be a good idea to sign up on all the Discord channels each product has to find some interesting insides from users.
  4 | 
  5 | Important: if you work on something related to undetection, like humanizing puppeteer actions, we may consider collaboration as I'm working currently on it too. My [TG](https://t.me/eugenebos).
  6 | 
  7 | # Anti-detect browsers
  8 | * [Undetectable](https://undetectable.io/?r=AXCFe) - 5 cloud profiles free, $49 for unlimited local with 25 "configs", 1 additional config $1 (API + driver automation)
  9 | * [NSTBrowser](https://app.nstbrowser.io/r/NZ0daY) - 10 profiles opened / day free, $299 for 3000 open profiles per day, quite new on the market.
 10 | * [Multilogin](https://multilogin.com/#a_aid=secretbonus3) - starts from €74 for 100 profiles  
 11 | * [Incogniton](https://incogniton.com/aff/620515/) - 10 free, $29.99/Month for 50
 12 | * [Octo Browser](https://octobrowser.net) - starts from €21 for 10  
 13 | * [Gologin](https://go.gologin.com/secretbonus-IFOGFRB) - 3 free, $24 for 100 profiles, no unlimited plan, free proxies  
 14 | * [AdsPower](https://share.adspower.net/YyHH9v) - 2 profiles free, $5.4 for 10 profiles, no unlimited plan  
 15 | * [Morelogin](https://www.morelogin.com/?from=AAA2qquLhqBd) - 2 free, $9 for 10 profiles and 2 users  
 16 | * [Dolphin-anty](https://dolphin-anty.com/a/3047556) - 10 free, $89 for 100  
 17 | * [Kameleo](https://kameleo.io/) - starts €59/user with unlimited profiles  
 18 | * [Vmlogin](https://www.vmlogin.us/) - $99 for 200 profiles  
 19 | * [Indigo](https://www.goindigo.in/) - €99 for 100 profiles  
 20 | * [GhostBrowser](https://ghostbrowser.com/) - 4 profiles free, $21 unlimited  
 21 | * [Bablosoft](https://bablosoft.com/shop/BrowserAutomationStudio) - free browser automation studio, for Puppeteer look at [puppeteer-with-fingerprints](https://github.com/CheshireCaat/puppeteer-with-fingerprints), the only browser as I know that supports faking canvas (with [PerfectCanvas](https://wiki.bablosoft.com/doku.php?id=perfectcanvas). If you need a code for your website to generate own canvases I can sell you it. Then you can add it to your fingerprints (Their PerfectCanvas is very slow and you can get only 30-40 per day, otherwise will need to buy CustomServer).
 22 | * [OctoBrowser](https://octobrowser.net/) - €21 for 10 profiles
 23 | * [ixBrowser](https://ixbrowser.com/en) - free, but doesn't mask everything, for example, no GPU masking, API by request
 24 | * [Gpmlogin](https://gpmloginapp.com/en) - didn't check it yet, pricing is for unlimited use, for 1pc it is $125
 25 | * [VektorT13](https://detect.expert/antidetect/) - anti-detect based on virtual machines
 26 | * [Wade](https://wade.is/)
 27 | * [Camoufox](https://camoufox.com/) - launched via Python, based on Firefox
 28 | * [LightPanda](https://lightpanda.io/) - not anti detect, but fast browser for scraping
 29 | * [Whologin](https://whologin.com/) - Free plan has unlimited profiles but no automation. paid - $89/everything
 30 | * [ADBLogin](https://adblogin.com) - The First anti-detect browser free forever
 31 | * [PotaBrowser](https://github.com/snaberino/pota-browser) - patched chromium
 32 | * [ChromePowerApp](https://github.com/zmzimpl/chrome-power-app) - chinese multiaccounter
 33 | 
 34 | Useless:
 35 | * [AntBrowser](https://antbrowser.pro) - too many lies detected by CreepJS
 36 | * [Switch Antidetect](https://switch.mybot.su) - using Chrome 103 while 120 is out. Too slow updates.
 37 | * [GhostBrowser](https://ghostbrowser.com/) - only user-agent switch, easily fingerprinted
 38 | * [MarketerBrowser](https://www.marketerbrowser.com/) - can't even switch user-agent without detection
 39 |   
 40 | A bit old [article on how anti-detect browsers can be detected](https://cpa.rip/stati/antidetect-palivo/). Example from the article: `if( Object.getOwnPropertyNames(navigator)[0] ) alert('fake parameters detected');`
 41 |   
 42 | # Detection tests
 43 | 
 44 | * [Creep JS](https://abrahamjuliot.github.io/creepjs/) - the advanced detector
 45 | * [Brotector](https://kaliiiiiiiiii.github.io/brotector/) - the most advanced detector, crushes automation on detect
 46 | * [Pixelscan](https://pixelscan.net/) - simple fingerprint checker
 47 | * [F.vision](https://fv.pro/check-privacy/general) - old f.vision
 48 | * [NikolaiT/zardaxt](https://github.com/NikolaiT/zardaxt) - Passive TCP/IP fingerprinting (look for Live demo link)
 49 | * [Coveryourtracks](https://coveryourtracks.eff.org/) - test to see if you are protected from fingerprinting  
 50 | * [ReCaptha score](https://antcpt.com/score_detector/) - see you reCaptcha score  
 51 | * [AmIUnique Fingerprint](https://amiunique.org/fingerprint) - see your fingerprint  
 52 | * [Sannysoft Fingerprint](https://bot.sannysoft.com/) - check your fingerprint  
 53 | * [BrowserLeaks](https://browserleaks.com/)  
 54 | * [Extension-detector](https://z0ccc.github.io/extension-detector/)
 55 | * [Audio fingerprint](https://audiofingerprint.openwpm.com/)
 56 | * [Behavioral Bot Classification](https://bot.incolumitas.com/)
 57 | * [Canvas Tampering Detection](https://kkapsner.github.io/CanvasBlocker/test/detectionTest.html)
 58 | * [ProxyDetect](https://proxy.incolumitas.com/proxy_detect.html) - detection of proxy/vpn
 59 | * [WebbrowserTools](https://webbrowsertools.com/) - many tools to check fingerprint
 60 | * [My own tool](https://reviewer.eugenebos.com/test) - the only benefit the code is plain, so you can find very easily how everything is tested.
 61 | * [Rebrowser-bot-detector](https://bot-detector.rebrowser.net/) - interesting test where you have to do some automation tasks and it will try to detect you
 62 | * [BotChecker](https://botchecker.net/) 
 63 | 
 64 | Others:
 65 | * [BrowserScan](https://www.browserscan.net/en)
 66 | * [Iphey](https://iphey.com/)
 67 | * [Canvas inspector](https://data.bablosoft.com/canvas-inspector-3/distr/CanvasInspectorInstall.exe)
 68 | * [ipQualityScore](https://www.ipqualityscore.com/) - API for checking your IP reputation and other stuff. But it is dogshit, as I can't register there from real devices, it says Im using VPN/proxy. Maybe only for USA.
 69 | * [FingerBank](https://fingerbank.org/) - API for checking TCP fingerprints by signature
 70 | * [Cloudflare captcha](https://nowsecure.nl) - check if you are passing the captcha  
 71 |   
 72 | More tools can be found: at https://github.com/kkoooqq/fakebrowser  
 73 | 
 74 | # Anti-detect libs
 75 | 
 76 | [Privacy Manager](https://www.ivanovation.ro/modules/) - 12 modules to change fingerprint of your computer.
 77 | 
 78 | For Puppeteer:  
 79 | * [Imposter](https://github.com/TheGP/Imposter) - my package that emulates human actions on the page, currently in development, join me :)
 80 | * [Rebrowser](https://github.com/rebrowser/rebrowser-patches) - isolated environment
 81 | * [Secure-puppeteer](https://github.com/prescience-data/secure-puppeteer) - isolated environment, outdated, so XPath and some feautures doesnt work
 82 | * [Extra stealth](https://github.com/berstend/puppeteer-extra/tree/master/packages/puppeteer-extra-plugin-stealth) - trash, as easily detected by CreepJS  
 83 | * [Fingerprints from Bablosoft](http://fingerprints.bablosoft.com/) - free and paid fingerprints to use  
 84 | * [Perfect Canvas from Bablosft](https://wiki.bablosoft.com/doku.php?id=perfectcanvas) - emulating real canvas data
 85 | 
 86 | For Playwright:
 87 | * [Rebrowser](https://github.com/rebrowser/rebrowser-patches) - isolated environment 
 88 | 
 89 | For Selenium/Python:  
 90 | * [NoDriver](https://github.com/ultrafunkamsterdam/nodriver) - successor of Undetected-chromedriver
 91 | * [ZenDriver](https://github.com/stephanlensky/zendriver) - fork of NoDriver
 92 | * [Undetected-chromedriver](https://github.com/ultrafunkamsterdam/undetected-chromedriver) - outdated
 93 | * [Pyautogui](https://pyautogui.readthedocs.io/en/latest/) - control the mouse and keyboard to automate interactions with other applications
 94 | * [Selenium-Driverless](https://github.com/kaliiiiiiiiii/Selenium-Driverless) - use selenium without chromedriver
 95 | 
 96 | For request libs:
 97 | * [Curl-impersonate](https://github.com/lwthiker/curl-impersonate)
 98 | * [For GO](https://github.com/wangluozhe/requests)
 99 | * [CycleTLS for NodeJS/GO](https://github.com/Danny-Dasilva/CycleTLS)
100 | * [curl_cffi for Python](https://github.com/yifeikong/curl_cffi)
101 | * [Got-Scraping for NodeJS](https://github.com/apify/got-scraping)
102 | 
103 | Chrome [launch arguments](https://developer.chrome.com/docs/extensions/reference/api/i18n#concepts_and_usage):
104 | * `--profile-directory=${dir_name}` // should be together with `userDataDir`
105 | * `--accept-lang=en,en-US,` // th,en,en-GB,en-US works only on new profile dirs
106 | * `--user-agent=${user_agent}` // properly changes user-agent in headers and JS runtime
107 | * `--disable-extensions-except=${EXTENSION_PATH}`
108 | * `--load-extension=${EXTENSION_PATH}`
109 | * `--disable-site-isolation-trials` helps to detect all iframes on the page for Puppeteer, without it frames from another domain will be inaccessible
110 | * `--aggressive-cache-discard` // useful in case u want more time for a debugger to attach or an extension to modify something
111 | * `--disable-gpu` // less detectable canvas fingerprint, but GPU vendor/renderer still will be present
112 | 
113 | # Humanizing
114 | 
115 | * [Fake-browser](https://github.com/kkoooqq/fakebrowser) Based on Puppeteer, with human-like interactions  
116 | * [Bezier mouse movements](https://github.com/Pomax/bezierjs)  
117 | * [Definitely-not-a-robot](https://github.com/dougwithseismic/npm-definitely-not-a-robot)  
118 | * [Puppeteer-Humanize](https://github.com/nicoandmee/puppeteer-humanize)  
119 | * [Ghost-Cursor](https://github.com/Xetera/ghost-cursor) - generate realistic, human-like mouse movement data between coordinates
120 | 
121 | # Captha solvers
122 | * [List of everything related to Captchas](https://github.com/TheGP/Everything-About-Captchas/)
123 | 
124 | # SMS confirmations
125 | * [SmsActivate](https://sms-activate.io/?ref=8536388) - min top up ~$2.5, high commissions
126 | * [VakSms](https://vak-sms.com/3b4308f6-b7ff-4085-a095-5e63f650fa7f) - not every country is available
127 | * [SmsHub](https://smshub.org/) - looks like the cheapest but has a lot of low-quality numbers(at least in Thailand), sometimes specifying an operator helps
128 | * [GrizzlySms](https://1grizzlysms.com/registration?r=539140)
129 | * [5Sim](https://5sim.net/) - expensive for some countries but has activation rate data available (Thailand for example)
130 | * [OnlineSim](https://onlinesim.io/?bref=880810) - very expensive
131 | * [SmsBower](https://smsbower.com/registration?ref=110541) - min top up $2.86, low commission
132 | * [365sms](https://365sms.vip/?ref=626004) - top up from $1
133 | 
134 | # Residential proxies
135 | [List of mobile proxies](https://github.com/TheGP/4g-proxies-providers) - many small providers
136 | 
137 | * [BrightData](https://get.brightdata.com/jdpda3d3pu8n) - around $8/GB
138 | * [DataImpulse](https://dataimpulse.com/?aff=10601) - from $1/GB (has $5/5Gb welcome package, but normally top-up is $50+). IMAP/SMTP blocked.
139 | * [WebShare](https://www.webshare.io/?referral_code=r5ah58acc1n1) - $6/Gb (from 4.5), IPs: from $6/month per 20 (shared). IMAP/SMTP works.
140 | * [GeoNode](https://geonode.com/) - $4/Gb (from $1.7)
141 | * [LunaProxy](https://www.lunaproxy.com/register?Invitation_code=59NQELMK) - $3/Gb (from $0.8), has static too ($3/week, $5/month), IMAP/SMTP blocked.
142 | * [Piaproxy](https://account.piaproxy.com/register?invitation_code=9SOOQJZT)
143 | * [Soax](https://soax.com?afmc=9e) - starts at $6.6/GB and less
144 | * [IPRoyal](https://iproyal.com/?r=381340) - starts at around 5.25/GB for 10GB, less too expensive (IMAP only if spending 5k)
145 | * [922proxy](https://www.922proxy.com/index.html?inviter_code=eac554c7) - $3/GB (up to 60 min), $0.22/IP, $5/30 days
146 | * [9proxy.com](https://9proxy.com/sign-up?inviteCode=9P_3YVqNdK8) - $0.07-0.2/IP
147 | * [ProxyEmpire](https://proxyempire.io/?ref=ntayyzn) - $2-5.71/GB
148 | 
149 | # Buying accounts
150 | Hm. Cant get it right? You can always shortcut:
151 | * [AccsMarket](https://accsmarket.com/en/?ref=631958) - en/ru, crypto
152 | * [DarkStore](https://dark.shopping/?p=197898) - ru lang, crypto / local russian bank payment
153 | 
154 | Many other stuff can be found at [BlackHatWorld](blackhatworld.com) but usually more expensive.
155 | 
156 | # Other
157 | 
158 | * [Script to collect visitors' fingerprints](https://github.com/kkoooqq/fakebrowser/blob/main/script/dumpDD.js) on your website.
159 | * Article [How to bypass “slider CAPTCHA” with JS and Puppeteer](https://filipvitas.medium.com/how-to-bypass-slider-captcha-with-js-and-puppeteer-cd5e28105e3c)
160 | * Library of [research papers and presentations for counter-detection and web privacy](https://github.com/prescience-data/dark-knowledge)
161 | * CPU fingerprinting gives a model of the CPU with [60% accuracy](https://github.com/CISPA/browser-cpu-fingerprinting)
162 | * [How to bypass PerimeterX](https://www.reddit.com/r/webscraping/comments/1ac34ob/how_to_bypass_perimeterx/kjrxv8n/)
163 | * Article [BotOrNot](https://incolumitas.com/pages/BotOrNot/)
164 | * Your [request fingerprint](https://tls.peet.ws/api/all)
165 | 
166 | # Antidetection tips
167 | 
168 | Browser - use [separately downloaded](https://incolumitas.com/2021/05/20/avoid-puppeteer-and-playwright-for-scraping/) version of Chrome instead of Chromium, and pass it in `executablePath` in Puppeteer.  
169 | * Screen width/height + Window height/width  - can be emulated by attaching a debugger via Chrome extension, but `screen.availHeight` and width will be wrong. So, it is better to change screen size on a virtual machine or use an anti-detect browser.  
170 | * Disable WebRTC when using proxies/mask public IP: https://github.com/puppeteer/puppeteer/issues/6377  
171 | * Match all proper browser headers in the same order
172 | * Autocontext api https://habr.com/ru/companies/globalsign/articles/475586/ https://fb-killa.pro/threads/povyshaem-svoju-anonimnost-putem-kontrolja-nad-audiocontext-fingerprint.2759/#post-19349
173 | * Make sure nothing of your scripts if visible in global score, some websites collect all data (like window.*) and analyze it
174 | * Did you know if you go directly on the website without googling it it will be visible by using window.history.length? 
175 | 
176 | # What is available in a JS worker:
177 | Worker is another sneaky way to detect real browser data, as you can't modify object properties in it with some extension.
178 | `window`, `screen`, and access to DOM are not available (and therefor canvas)
179 | 
180 | * Timezone ( `Intl.DateTimeFormat().resolvedOptions().timeZone` )
181 | * Language ( `navigator.language || navigator.userLanguage` )
182 | * User agent ( `navigator.userAgent` )
183 | * Hardware Concurrency ( `navigator.hardwareConcurrency` )
184 | * [GPU data](https://developer.mozilla.org/en-US/docs/Web/API/WorkerNavigator/gpu) (except Linux & Firefox upd 30.01.2024)
185 | 
186 | 
187 | 


--------------------------------------------------------------------------------
/capsolver.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/TheGP/untidetect-tools/9e919067fbca9ea9cc9d5419add77d0c17de224f/capsolver.jpg


--------------------------------------------------------------------------------