Fast browser and server library for fingerprinting with no dependencies. Uses SHA512.
NPM: npm install eight
CDN: //cdn.jsdelivr.net/npm/eight@<VERSION>/eight.js
console.info(require("eight")()) // Node.js
console.info(window.eight()()) // IE6+ browser
> E9D0C22416262B2F51A4402318060A206620BED2
Eight returns instance which takes several defined optional parameters and any another parameter is hashed together with it:
import eight from "eight"
const fingerprint = eight({
hash: "ripe160", // <sha512 || sha256 || ripe160>
resolution: true, // <boolean>
flash: true, // <boolean>
plugins: true, // <boolean>
strong: false, // <boolean>
anythingelse: "ABCD" // additional entropy
})
fingerprint()
// E9D0C22416262B2F51A4402318060A206620BED2
fingerprint({ ip: "187.30.93.12" })
// 2416262B2F51A4402318060A206620BED2E9D0C2
fingerprint({ ip: "39.120.11.2" })
// 4402318060A206620BED2E9D0C22416262B2F51A
Fallback into null, if user doesn't posses enough data due to incognito mode or privacy extensions:
fingerprint({ fallback: true })
Check Flash and fingerprint graphic card rendering defects and installed version:
fingerprint({ flash: true })
It's possible to customize fingerprinting with own parameters which are passed as params. This way anything (like cookies, ip adress or username) can be considered.
fingerprint({ ip: "133.98.32.55" })
// 2416262B2F51A4402318060A206620BED2E9D0C2
fingerprint({ cookies: JSON.stringify(cookies) })
// 20BED2E9D0C22416262B2F51A4402318060A2066
fingerprint({ whatever: "ABCDEF" })
// F51A4402318060A206620BED2E9D0C22416262B2
Eight is a semi-private obfuscated repository under MIT licence. We ( (with security through obscurity in mind) try to secure our code against plugins which fake headers, browsers and try to make browser private.
FAQs
A browser fingerprinting library
The npm package eight receives a total of 28 weekly downloads. As such, eight popularity was classified as not popular.
We found that eight demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Critics call the Node.js EOL CVE a misuse of the system, sparking debate over CVE standards and the growing noise in vulnerability databases.
Security News
cURL and Go security teams are publicly rejecting CVSS as flawed for assessing vulnerabilities and are calling for more accurate, context-aware approaches.
Security News
Bun 1.2 enhances its JavaScript runtime with 90% Node.js compatibility, built-in S3 and Postgres support, HTML Imports, and faster, cloud-first performance.