Are a web user? You answer No? where are you reading from?

I bet we all have experienced this once, twice, trice... nth times where we go to a platform where we have an account and after login we get an email alert.

Hey dude, you tried to login or perhaps someone is trying to snitch with your data? Quickly let us know.

In real life such emails look like this

Netflix New Location

Discord New Location

Notion New Location

BUT HOW IS THIS DONE???

Thinking meme

Every time you are online and browsing, opening websites or apps, there are a few things we can collect from your device since those are public informations and unless you are told you won't know... By the way who read s privacy policies? No one, I do. And most platforms clearly tell you what they collect or might collect, for example dev.to collects IP address, MAC etc (dev.to/privacy).

Dev.to Privacy Policy

Don't worry, all these is to improve our security and User Experience on the platform.

All this is part of what we call fingerprinting. Now you know it is not your Thumb fingerprint we are talking about you. Just like all fingerprints are unique so are internet fingerprints and this is what makes each user over the internet unique. How can we extract that now and use if "FOR GOOD".

What is a Fingerprint?

My Fingerprint
A web Fingerprint a unique identifier generated from a combination of your web browser's characteristics and settings, which can be used to distinguish you from other users online. It's a method websites use to track users, even when cookies are blocked, and can be used for personalization, advertising, and other purposes.

You can track users fingerprints yourself or opt for something more efficient coming from a 3rd party.

Can We CRAFT Now?

Unless you are not yet fix on what we are doing here, then email me with questions or requests and read the OWASP Fingerprints Notes

Although Django has so many included batteries, unfortunately it does not explicitly track devices info and fingerprints. As a whole, we will have to craft something for ourselves to collect a few details regarding Fingerprint.

We won't be able to track the fingerprint effectively with only python code, so now we will have a few javascript lines at the frontend to handle.

And some websites go further and scan for usage for VPN and might ban you or event stop you from using the website.

Demo

My Fingerprint

Source Code

Github Button

Call To Action

You found this interesting? Buy me a beer!!! or Coffee, whatever one.
BuyMeABeer