**pistolero** @p@fsebugoutzone.org · Feb 24, 2025, 12:22

**pistolero** @p@fsebugoutzone.org · Feb 24, 2025, 12:22

pistolero @p@fsebugoutzone.org

Feb 24, 2025, 12:22

> "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)"

Man, fuck these guys.

**+bonifartius 𒂼𒄄** @bonifartius@qoto.org · Feb 24, 2025, 12:51

**+bonifartius 𒂼𒄄** @bonifartius@qoto.org · Feb 24, 2025, 12:51

Feb 24, 2025, 12:51

+bonifartius 𒂼𒄄 @bonifartius@qoto.org

@p i wonder how the tcp packages look. one could filter for "windows send this package" back in the day, maybe the scrapers do have some unique fingerprints as well.

**pistolero** @p@fsebugoutzone.org · Feb 25, 2025, 02:21

**pistolero** @p@fsebugoutzone.org · Feb 25, 2025, 02:21

Feb 25, 2025, 02:21

pistolero @p@fsebugoutzone.org

@bonifartius I ran ja3er on the tcpdump output for a while. Chrome decided to try to defeat SSL fingerprinting, so anyone using Headless Chrome is hard to spot just from the packets.

**+bonifartius 𒂼𒄄** @bonifartius@qoto.org · 2025-02-25T22:33:45Z

+bonifartius 𒂼𒄄 @bonifartius@qoto.org

@p i didn't even know about ja3, learned something :)

Feb 25, 2025, 22:33 · · · ·

Resources

Developers

What is Mastodon?

qoto.org

More…