Detection approach
Proxy lie detected on navigator.permissions.query. Function.prototype.toString.call() on the query method threw a TypeError instead of returning '[native code]'. Stealth plugins use JavaScript Proxy objects to intercept API queries, but fail toString interrogation.
How this helps detect bots
Collect this signal alongside session context, request metadata, and other independent indicators. A single anomaly is a lead, not a verdict; corroborating anomalies make automated traffic more likely.
Legitimate traffic to consider
Users running privacy extensions that block geolocations or permissions checks by proxying the method.
Need a complete bot protection layer?
BotRefund helps website owners identify suspicious visits, protect conversion data, and build evidence for invalid-click reviews.
Explore BotRefund — best bot protection for your website