Detection approach
Native function patching detected on core APIs (e.g., navigator.permissions or document.createElement). A script is actively trying to hide its spoofed environment.
How this helps detect bots
Collect this signal alongside session context, request metadata, and other independent indicators. A single anomaly is a lead, not a verdict; corroborating anomalies make automated traffic more likely.
Legitimate traffic to consider
Users with security extensions (e.g. NoScript, Privacy Badger) or enterprise monitoring tools that wrap native APIs.
Need a complete bot protection layer?
BotRefund helps website owners identify suspicious visits, protect conversion data, and build evidence for invalid-click reviews.
Explore BotRefund — best bot protection for your website