mirror of
https://github.com/garrytan/gstack.git
synced 2026-05-06 21:46:40 +02:00
gstack
46b2e35917
Add stealth.ts module that addresses all known automation fingerprints: 1. navigator.webdriver property deletion (not just value override) - bot detectors check property existence via 'webdriver' in navigator 2. WebGL renderer spoofing (SwiftShader → Apple M1 Pro) - SwiftShader is the #1 giveaway of container/headless environments 3. Proper PluginArray that passes instanceof checks - raw arrays fail PluginArray instanceof which DataDome/Cloudflare check 4. Complete chrome object (app, runtime, loadTimes, csi) - shallow stubs missing chrome.app get flagged 5. CDP runtime artifact cleanup (cdc_*, $cdc_*, __webdriver*) 6. Permissions API normalization (prompt, not denied) 7. Media devices presence for containers 8. Function.toString() protection - overridden functions look native Passes SannySoft (bot.sannysoft.com) 100%. Replaces inline patches in browser-manager.ts with shared module used by both headless launch() and headed launchHeaded() paths. Tested against: NYT, LinkedIn, Google, Bloomberg, BleepingComputer, Brave Search, DuckDuckGo - all previously blocked from automation browsers, all now pass through. Remaining hard targets (Reddit, FT, WSJ) blocked by IP reputation checks beyond browser fingerprinting.