M

Device fingerprint

Fingerprint

A device fingerprint or machine fingerprint or browser fingerprint is information collected about a remote computing device for the purpose of identification. Fingerprints can be used to fully or partially identify individual users or devices even when cookies are turned off. With the assistance of client-side scripting languages, collection of much more esoteric parameters is possible. Recently such fingerprints have proven useful in the detection and prevention of online identity theft and credit card fraud.

Using Django, some python libraries and Fingerprintjs2, I added this way to obtain this information into the website used for Penetration/Exploit/Hijacking honeypot deployed Penetration/Exploit/Hijacking decoders for Dshell, so when someone is browsing into a bespoke ‘hello’ website, it could be possible to obtain all this information:

HTTP Headers identified

Using python libraries.

HTTP_HOST
HTTP_USER_AGENT
HTTP_ACCEPT
HTTP_ACCEPT_LANGUAGE
HTTP_ACCEPT_ENCODING
HTTP_CONNECTION
HTTP_UPGRADE_INSECURE_REQUESTS
REMOTE_ADDR
REMOTE_PORT
REQUEST_METHOD
REQUEST_URI
REQUEST_TIME
SERVER

Geolocation information identified

Using services provided by freegeoip or maxmind

location_city
location_state
location_country
latitude
longitude

Browser fingerprint identified

Using Fingerprintjs2

fingerprint
user_agent
language
color_depth
device_memory
pixel_ratio
hardware_concurrency
resolution
available_resolution
timezone_offset
session_storage
local_storage
indexed_db
cpu_class
navigator_platform
do_not_track
regular_plugins
canvas
webgl
webgl_vendor
adblock
has_lied_languages
has_lied_resolution
has_lied_os
has_lied_browser
touch_support
js_fonts

Example

HDwXbQw

Other services

Similar services are provided by thirdparty websites like:

iplogger

grabify

blasze

ip-adress

panopticlick