binged.in: detection

[JinEnMok]

Prerequisites

• This is NOT a YouTube, Facebook or Twitch report. These sites MUST be reported by clicking their respective links.
• I read and understand the policy about what is a valid filter issue.
• I verified that this issue is not a duplicate. (Use this button to find out.)
• I did not remove any of the default filter lists, or I have verified that the issue was not caused by removing any of the default lists.
• I did not enable additional filter lists, or I have verified that the issue still occurs without enabling additional filter lists.
• I do not have custom filters/rules, or I have verified that the issue still occurs without custom filters/rules.
• I am not using uBlock Origin along with other content blockers.
• I have verified that the web browser's built-in blocker or DNS blocking (standalone or through a VPN) is not causing the issue.
• I have verified that other extensions are not causing the issue.
• If this is about a breakage or detection, I have verified that it is caused by uBlock Origin and isn't a site issue.
• I did not answer truthfully to ALL the above checkboxes.

URL address of the web page

https://binged.in/

Category

detection

Description

Binged.in displays an "UwU" placeholder and doesn't load assets when the developer console is open, as well as displaying a "You don't have permission to use DEVTOOL" error in the console. See also on Reddit

Other extensions used

None

Screenshot(s)

Screenshot(s)

Configuration

uBlock Origin: 1.56.0
Firefox: 125
filterset (summary):
 network: 137560
 cosmetic: 66508
 scriptlet: 20211
 html: 1755
listset (total-discarded, last-updated):
 default:
  user-filters: 3-0, never
  ublock-filters: 37386-112, 1h.41m Δ
  ublock-badware: 7755-14, 1h.41m Δ
  ublock-privacy: 739-0, 1h.41m Δ
  ublock-unbreak: 2293-0, 1h.41m Δ
  ublock-quick-fixes: 142-1, 1h.41m Δ
  easylist: 81572-645, 1h.41m Δ
  easyprivacy: 50327-864, 1h.41m Δ
  urlhaus-1: 4165-0, now
  plowe-0: 3779-1, now
  RUS-0: 39786-117, 1h.41m Δ
filterset (user): [array of 3 redacted]
trustedset:
 added: [array of 2 redacted]
userSettings: [none]
hiddenSettings: [none]
supportStats:
 allReadyAfter: 59008 ms (selfie)
 maxAssetCacheWait: 2931 ms
 cacheBackend: indexedDB
popupPanel:
 blocked: 1
 network:
  goatcounter.com: 1
 extended:
  ##+js(no-setInterval-if, /devtools|0x/)
  ##+js(set-constant, console.clear, trueFunc)
  ##+js(no-window-open-if)
  ##+js(abort-on-property-read, __Y)
  ##+js(abort-current-script, JSON.parse, break;case $.)
  ##+js(abort-current-script, document.documentElement, break;case…
  ##+js(abort-current-script, navigator, FingerprintJS)

[JobcenterTycoon]

Test

vidsrc.*##+js(acs, RegExp.prototype.toString)
vidsrc.*##+js(nosiif, sandCheck)

The first filter is against the anti devtools and the second one against a random "sandbox check" which getting triggered on my main browser.

[JinEnMok]

@JobcenterTycoon I'm still getting uwu'd with that... assuming I installed it correctly

[stephenhawk8054]

Keep the above 2 and add this one also:

vidsrc.*##+js(nosiif, devtool)

[JobcenterTycoon]

Maybe clearing the website cache also helps. I tried multiply times and it works perfectly on my end.

[JinEnMok]

@stephenhawk8054 that seems to do the trick.

Will this be added to some standard list?

[stephenhawk8054]

@JobcenterTycoon vidsrc.*##+js(acs, RegExp.prototype.toString) is quite broad. I think maybe we can put it in Annoyance list first to see if there's any breakage or not.

---

Or maybe this?

vidsrc.*##+js(acs, RegExp.prototype.toString, .join(""))

[JobcenterTycoon]

Works fine for me. But why base list? Why not adding these filter to the annoyance list

vidsrc.*##+js(acs, RegExp.prototype.toString, .join(""))
vidsrc.*##+js(aeld, keydown, 123)
vidsrc.*##+js(nosiif, devtool)
vidsrc.*##+js(set, console.clear, trueFunc)

I also see anti F12 vidsrc.*##+js(aeld, keydown, 123) will fix this.

[stephenhawk8054]

Yeah I agree. I was also about to do so. I'll move them to annoyance list.

[ItsProfessional]

@JobcenterTycoon why vidsrc.*##+js(aeld, keydown, 123) instead of just vidsrc.*##+js(aeld, keydown)?
They could easily make it so that the listener callback no longer contains "123" (e.g. by using atob)

[JobcenterTycoon]

Because they also run legit code on the keydown event like m = mute. 123 is the key code of the F12 key so the chance of breakage is pretty small. I don’t think its so important for them to circumvent a non default filter for a small anti F12 code.