search

Webperf-se / webperf_core

webperf-core is an open-source testing suite tailored to help you improve your digital presence in areas like web performance, security and accessibility to email best practice using many small improvements.
https://webperf.se/articles/webperf-core/
MIT License
19 stars 30 forks source link

Software and Integrity: Detect Fathom and Plausible Analytics #193

Closed marcusosterberg closed 1 year ago

marcusosterberg commented 1 year ago

Fathom

A Fathom sample is to be found on https://nimbleinitiatives.com/

The request syntax is:

https://anl.nimbleinitiatives.com/?h=https%3A%2F%2Fnimbleinitiatives.com&p=%2F&r=https%3A%2F%2Fwww.google.com%2F&sid=XJRNEWFG&qs=%7B%7D&cid=67254428

marcusosterberg commented 1 year ago

On usefathom they request:

https://quick-esteemed.usefathom.com/

Common is that they both have below code to start their JS:

window.fathom = function() {
    function trackPageview() {
        window.fathom.trackPageview()
    }
marcusosterberg commented 1 year ago

Plausible

According to their documentation, the way to find if a website is using Plausible Analytics is to look for this in the HEAD-tag:

vuejs.org

https://www.sciencemuseum.org.uk/

https://www.insurancejournal.com/

https://seedandspark.com/

https://www.vagrantup.com/

https://usefathom.com/

Hotjar (for heatmaps)

https://inside.com/

https://static.hotjar.com/c/hotjar-2859169.js?sv=7 https://script.hotjar.com/modules.f0ba8b655d2d90cf7a94.js

https://jobs.citizensbank.com/

<script>
(function(h,o,t,j,a,r){
h.hj=h.hj||function(){(h.hj.q=h.hj.q||[]).push(arguments)};
h._hjSettings={hjid:2650353,hjsv:6};
a=o.getElementsByTagName('head')[0];
r=o.createElement('script');r.async=1;
r.src=t+h._hjSettings.hjid+j+h._hjSettings.hjsv;
a.appendChild(r);
})(window,document,'https://static.hotjar.com/c/hotjar-','.js?sv=');
</script>

https://tgifridays.com/

https://bab.la/


<script type="text/javascript">
var loadResources = true;
var hotjarID = "1695067"; 
        function OptanonWrapper() { 
            if (loadResources && hotjarID) {
                <!-- Hotjar Tracking Code for https://bab.la/ -->
                (function(h,o,t,j,a,r){
                h.hj=h.hj||function(){(h.hj.q=h.hj.q||[]).push(arguments)};
                h._hjSettings={hjid:hotjarID,hjsv:6};
                a=o.getElementsByTagName('head')[0];
                r=o.createElement('script');r.async=1;
                r.src=t+h._hjSettings.hjid+j+h._hjSettings.hjsv;
                a.appendChild(r);
                })(window,document,'https://static.hotjar.com/c/hotjar-','.js?sv=');

                loadResources = false;
            }
        }
    </script>

https://birdeye.com/
> <script type="text/javascript" async="" src="https://static.hotjar.com/c/hotjar-601601.js?sv=7"></script>

https://www.template.net/
> <script async="" src="https://static.hotjar.com/c/hotjar-949989.js?sv=6"></script>
> <script async="" src="https://script.hotjar.com/modules.f0ba8b655d2d90cf7a94.js" charset="utf-8"></script>
> <script async="" src="https://static.hotjar.com/c/hotjar-949989.js?sv=6"></script>


https://brickseek.com/
> <script type="text/javascript" async="" src="https://static.hotjar.com/c/hotjar-1040092.js?sv=7"></script>
marcusosterberg commented 1 year ago

Plausible examples

https://maps.metmuseum.org/?screenmode=base&floor=1#hash=17/40.779448/-73.963517/-61

https://www.artspace.com/

https://nypd-surveillance.amnesty.org/

https://livesport.expressen.se/

https://athemes.com/

https://www.macropoint.com/

https://mavin.io/

https://opendeur.annefrank.org/

https://momentumdash.com/

marcusosterberg commented 1 year ago

Monsido (a Siteimprove competitor)

https://www.americansale.com/


<script type="text/javascript">
window.MonsidoCookieOnLoad = function() {
var cookiePreferencesEl = document.querySelector(".preview-monside-cookie-c");
            if (cookiePreferencesEl) {
                cookiePreferencesEl.addEventListener("click", function(e) {
                    e.preventDefault();
                    window.monsidoConsentManager.showBanner("cookie-preferences");
                });
            }

            var mcmEl = document.querySelector('mon-cb-main');

            if (mcmEl) {
                mcmEl.classList.add('mcm-slide-up');
            }
        };
    </script>


https://www.auckland.ac.nz/en.html
> <script type="text/javascript" id="" src="https://app-script.monsido.com/v2/monsido-script.js"></script>
`<script type="text/javascript" id="">window._monsido=window._monsido||{token:"XZIYZpgmCXf6SOQI4W2B7A",statistics:{enabled:!0,documentTracking:{enabled:!0,documentCls:"monsido_download",documentIgnoreCls:"monsido_ignore_download",documentExt:["pdf","docx","xlsx","pptx"]}}};</script>`

https://easternflorida.edu/
> <script type="text/javascript" async="" src="https://app-script.monsido.com/v2/monsido-script.js"></script>

https://myboca.us/
> <script type="text/javascript" src="//cdn.monsido.com/page-assist/v2/mon-page-assist-loader.js"></script>
> <script type="text/javascript" src="//pagecorrect.monsido.com/v1/page-correct.js"></script>
> <script type="text/javascript" async="" src="https://app-script.monsido.com/v2/monsido-script.js"></script>

https://www.endlesspools.com/
> <script type="text/javascript" src="//pagecorrect.monsido.com/v1/page-correct.js"></script>
> <script type="text/javascript" async="" src="https://app-script.monsido.com/v2/monsido-script.js"></script>

https://michiganfirst.com/
> <script type="text/javascript" id="" src="https://app-script.monsido.com/v2/monsido-script.js"></script>
`<script type="text/javascript" id="">window._monsido=window._monsido||{token:"-RzSasd4W_lP17DV1UwhWA"};</script>`
7h3Rabbit commented 1 year ago

@marcusosterberg Do you have an old version? image

7h3Rabbit commented 1 year ago

Solved and closed