Curated List of Bot / Headless Chrome Detection Tests

v0.5.0 (20th March 2021) 🚀

This page attempts to detect if you are a bot or not and is constanlty being updated.

1. Behavioral Classification
2. More Sources and Links
3. Bot Challenge
4. New Detection Tests
5. Old Detection Tests
6. Http Headers
7. TCP/IP Fingerprint
8. TLS Fingerprint
9. Browser Fingerprint
10. Canvas Fingerprint
11. WebGL Fingerprint
12. Web Worker
13. Browser Data

Behavioral Bot Classification

The test behavioralClassificationScore gives a rating between 0 (Bot) and 1 (Human) based on advanced behavioral heuristics. A score below 0.5 means that you are most likely a bot.

The score is computed after seven seconds of browsing on this site. If you want a new score, refresh this page.

Don't worry if you are browsing this page and you are given a score between 0.7 and 1.0, the behavioralClassificationScore consist of 30+ individual classificators and it is normal that there are false positives.

In order to test your bot with a real world problem, your bot has to solve the challenge below.

More Sources/Information

Resources and Sources

1. Kinda outdated (selenium, phantomjs): bot.sannysoft.com and a GitHub repo from early 2019 with similar detection techniques.
2. Headless detection GitHub Repo, last update in 2019
3. Lot of good stuff from here: puppeteer-extra-plugin-stealth
4. Antoine Vastel: antoinevastel.com/bots and a more recent detection page using HTTP Headers and his employers datadome detection page
5. Pretty active GitHub Gist about preventing puppeteer detection
6. Rather new detection method found on GitHub
7. Vastel is detecting puppeteer with HTTP headers in early 2019...
8. hacker news discussion started by Vastel
9. And the response from Evan Sangaline, where he passes the new detection again
10. Rather recent article (February 2020) about Bot Detection 101 principles
11. Very recent (31 January 2021) and powerful bot / headless / puppeteer detection techniques
12. Che Browser, is it any good?
13. SecretAgent, The Web Browser Built for Scraping

Other Bot Detection Sites

• browserleaks.com (very valuable information)
• pixelscan (quite good and new)
• creepjs (this guy is crazy)

The cats: Anti Bot Companies

The following Anti Bot companies are all using their custom JavaScript detection algorithms.

• Shape Security
• DataDome
• Distil Networks (Acuired)
• Imperva
• Incapsula (Imperva now)
• PerimeterX
• Akamai
• FingerprintJS

• WhiteOps
• ShieldSquare
• F5
• Cloudflare (The End Boss)
• Arkose Labs
• Forter Protection
• reCAPTCHA
• BioCatch

Mouses: Bot/Proxy Companies (Selection)

The following Bot companies are either selling bot/scraping or anonymization technology (Proxies, VPN)

• ZenScrape
• Luminati.io
• Stormproxies
• scraperapi.com
• scrapingrobot.com

• scrapinghub
• packetstream
• Apify
• scrapingbee.com

---

Bot Challenge

Your bot has to fill out the form below and submit it. Then you are prompted to confirm the pop-up dialoge. After confirmation, you will see a table with basket items and prices. Update the prices of this table and scrape the data as a final step.

Completing all those steps provides enough behaviroal information in order to classify you as BotOrNot.