Research
Security News
Threat Actor Exposes Playbook for Exploiting npm to Build Blockchain-Powered Botnets
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
device-detector
Advanced tools
Simple tool for detecting device info in Node.js and web browsers. Support almost popular browsers and bots.
npm install device-detector
And then:
var DeviceDetector = require('device-detector');
Assuming there is a file device-detector.min.js located at "/public/js/lib/", the following ways can be used to include DeviceDetector:
System.config({
baseURL: '/public/js/lib',
map: {
DeviceDetector: 'device-detector.min'
}
});
System.import('DeviceDetector').then(function(DeviceDetector){
console.log(DeviceDetector.info);
});
require.config({
baseUrl: '/public/js/lib',
paths: {
DeviceDetector: 'device-detector.min'
}
});
requirejs('DeviceDetector', function(DeviceDetector){
console.log(DeviceDetector.info);
});
<script type="text/javascript" src="/public/js/lib/device-detector.min.js"></script>
<script type="text/javascript">
console.log(DeviceDetector.info);
</script>
DeviceDetector provides just one method named "parse".
DeviceDetector.parse([userAgent]);
The only parameter "userAgent" is optional in web browser, but required in Node.js environment.
For example:
var ua = 'Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)';
var deviceInfo = DeviceDetector.parse(ua);
deviceInfo is an object looks like this:
{
type: 'Bot',
browser: '',
engine: 'Googlebot',
version: '2.1',
os: ''
}
Another example, you can see how it will be used with ExpressJS and morgan to show shorter logs:
var express = require('express');
var morgan = require('morgan');
var DeviceDetector = require('device-detector');
var app = express();
morgan.token('navigator', function(req, res){
var ua = req.headers['user-agent'];
var d = DeviceDetector.parse(ua);
if(d){
if(d.type === 'Bot'){
return d.engine + ' ' + d.version;
}
return (d.browser + ' ' + d.version) + ', ' + (d.os + ' ' + d.type);
}
return 'Unknown device';
});
app.use(morgan(':method :url :status - :res[content-length] bytes :response-time ms - :navigator - [:date[web]]'));
Logging result:
GET /bookings 200 - 23324 bytes 1380.019 ms - Chrome 45.0.2454.93, Linux Desktop - [Wed, 23 Sep 2015 12:54:11 GMT]
GET /notifications 200 - 1757 bytes 29.730 ms - Chrome 45.0.2454.93, Linux Desktop - [Wed, 23 Sep 2015 12:54:12 GMT]
GET /profile 200 - 33805 bytes 619.092 ms - Chrome 45.0.2454.93, Linux Desktop - [Wed, 23 Sep 2015 12:54:20 GMT]
...
In the browsers, this method automatically executes and its result - current browser info - is being set to DeviceDetector.info property.
Also, if you don't pass "userAgent" parameter while calling "parse" method, it will return DeviceDetector.info instead of parsing again.
git clone https://github.com/ndaidong/device-detector.git
cd device-detector
npm install
npm test
The MIT License (MIT)
FAQs
Detect device info on Node.js and Browser
The npm package device-detector receives a total of 320 weekly downloads. As such, device-detector popularity was classified as not popular.
We found that device-detector demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.
Security News
NVD’s backlog surpasses 20,000 CVEs as analysis slows and NIST announces new system updates to address ongoing delays.
Security News
Research
A malicious npm package disguised as a WhatsApp client is exploiting authentication flows with a remote kill switch to exfiltrate data and destroy files.