What does HackerNews think of devtools-detect?

Detect if DevTools is open and its orientation

Language: HTML

Tell HN: MailChimp blacklists your IP if you open the browser's dev tools | Mar 2023
Expand Context ↕
https://sindresorhus.com/devtools-detect/

https://github.com/sindresorhus/devtools-detect

EDIT: doesn't seem to work if I have devtools as a separate window
Tell HN: MailChimp blacklists your IP if you open the browser's dev tools | Mar 2023
Expand Context ↕
One of the ways this is detected is by window resizing. You can see an example npm package that can detect devtools here: https://github.com/sindresorhus/devtools-detect
JavaScript Is Weird | Jun 2021
Expand Context ↕
Devtools can actually be detected to a certain extent - https://github.com/sindresorhus/devtools-detect
How we learnt to stop worrying and love web scraping | Sep 2020
Expand Context ↕
What out for "Devtools detect" :) https://github.com/sindresorhus/devtools-detect
The password “ji32k7au4a83” has been seen over a hundred times | Mar 2019
Expand Context ↕
As someone who has worked on scraping sites that really didn't want to be scraped, there is all kinds of interference with dev tools in the wild.

There are many ways to detect it's open (eg. https://github.com/sindresorhus/devtools-detect) and it's also possible to mess with it without knowing it's open. A method that's wildly used is firing the debugger break command many times a second, along with other stuff that makes using the tools nearly impossible (slows the browser down to a halt)
An Innovative Phishing Style | Oct 2018
The site's dead now - the DNS record was pulled about an hour ago. But, I got a snapshot of the site and all the code before it got taken down, and I took the liberty of deobfuscating the big blobs of code:

https://github.com/nneonneo/steam-phishing-analysis

It's fairly simple code, in the end. The phishers copied the legitimate trading site, as well as the Steam Community login page, and then added some JavaScript code to both as well as tweaking the HTML a bit. In total, three snippets of JS were added: the first detects debuggers using https://github.com/sindresorhus/devtools-detect (the bit that the original blog poster found), the second pops open the fake browser chrome and sticks the fake login page inside an iframe, and the third (running in the iframe) harvests credentials off the copied Steam login page.

Equifax linked customers to my fake phishing version of their site by accident | Sep 2017
Expand Context ↕
https://github.com/sindresorhus/devtools-detect
uBlock Origin Maintainer on Chrome vs. Firefox WebExtensions | Aug 2017
Expand Context ↕
Typically it seems to poll window height/width vars in js. https://github.com/sindresorhus/devtools-detect

Another variant: https://stackoverflow.com/questions/7798748/find-out-whether...