Fast browser and server library for fingerprinting with no dependencies. Uses SHA512.
NPM: npm install eight
CDN: //cdn.jsdelivr.net/npm/eight@<VERSION>/eight.js
console.info(require("eight")()) // Node.js
console.info(window.eight()()) // IE6+ browser
> E9D0C22416262B2F51A4402318060A206620BED2
import eight from "eight"
const fingerprint = eight({
hash: "ripe160", // <sha512 || sha256 || ripe160>
resolution: true, // <boolean>
flash: true, // <boolean>
plugins: true, // <boolean>
strong: false // <boolean>
})
fingerprint()
// E9D0C22416262B2F51A4402318060A206620BED2
fingerprint({ ip: "187.30.93.12" })
// 2416262B2F51A4402318060A206620BED2E9D0C2
fingerprint({ ip: "39.120.11.2" })
// 4402318060A206620BED2E9D0C22416262B2F51A
Sometimes a user (less than 0.1%) doesn't have enough information from browser due to incognito mode and privacy extensions. In this case we fallback into null state so it's clear we are not 100% sure about fingerprint.
fingerprint() // user in incognito with general laptop
// null
It's possible to customize fingerprinting with own parameters which are passed as params. This way anything (like cookies, ip adress or username) can be considered.
fingerprint({ ip: "133.98.32.55" })
// 2416262B2F51A4402318060A206620BED2E9D0C2
fingerprint({ cookies: JSON.stringify(cookies) })
// 20BED2E9D0C22416262B2F51A4402318060A2066
fingerprint({ whatever: "ABCDEF" })
// F51A4402318060A206620BED2E9D0C22416262B2
Eight is a semi-private obfuscated repository under MIT licence. We ( (with security through obscurity in mind) try to secure our code against plugins which fake headers, browsers and try to make browser private.
FAQs
A browser fingerprinting library
The npm package eight receives a total of 0 weekly downloads. As such, eight popularity was classified as not popular.
We found that eight demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
CISOs are racing to adopt AI for cybersecurity, but hurdles in budgets and governance may leave some falling behind in the fight against cyber threats.
Research
Security News
Socket researchers uncovered a backdoored typosquat of BoltDB in the Go ecosystem, exploiting Go Module Proxy caching to persist undetected for years.
Security News
Company News
Socket is joining TC54 to help develop standards for software supply chain security, contributing to the evolution of SBOMs, CycloneDX, and Package URL specifications.