X hits on this document

105 views

0 shares

1 downloads

0 comments

24 / 40

Client Fingerprinting via Analysis of Browser Scripting Environment

23

The navigator.productSub and navigator.vendor JavaScript properties are populated with WebKit specific values. The navigator.productSub contains the date ‘20030107’, while navigator.vendor contains ‘Apple Computer, Inc.’

Figure 5.3-2: Built-In Apple Safari Browser Spoofing

Safari contains developer tools which allow the browser to alter its navigator.userAgent and navigator.appVersion properties to be that of another browser/O/S combination (Apple, 2010). These changes do not affect the other object properties like version of JavaScript processed, available DOM objects or the navigator objects like navigator.platform or navigator.vendorSub. The modifications to masquerade as a version of Microsoft Internet Explorer are also limited in that there are no .Net framework identifiers supplied and most versions of Microsoft Windows include at least one version of the .Net framework.

5.4. Google Chrome

navigator.userAgent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.3 (KHTML, like Gecko) Chrome/6.0.472.0 Safari/534.3 navigator.appName: Netscape navigator.appCodeName: Mozilla navigator.appVersion: 5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.3 (KHTML, like Gecko) Chrome/6.0.472.0 Safari/534.3 navigator.appMinorVersion: undefined navigator.browserLanguage: undefined navigator.cpuClass: undefined navigator.systemLanguage: undefined navigator.language: en-US navigator.buildID: undefined navigator.oscpu: undefined navigator.platform: Win32 navigator.product: Gecko

Mark Fioravanti, mark.fioravanti.ii@gmail.com

Document info
Document views105
Page views105
Page last viewedTue Dec 06 18:18:33 UTC 2016
Pages40
Paragraphs975
Words10494

Comments