UNPKG

client-trace

Version:

A comprehensive client-side security and telemetry library. Features device fingerprinting, bot detection, network tampering analysis, and secure transport.

client-trace-demo-production.up.railway.app

deepsingh245/client-trace

56 lines (49 loc) 1.95 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
/** * Timing Anomaly Detection * Measures network timing to detect potential MITM slowdowns. */ /** * Measures network timing metrics for a given URL. * @param {string} url - The URL to measure. * @param {object} [thresholds] - Baseline thresholds for anomaly detection. * @param {number} [thresholds.dns] - Max DNS lookup time in ms. * @param {number} [thresholds.ttfb] - Max Time To First Byte in ms. * @returns {Promise<{ anomaly: boolean, metrics: object }>} */ export async function detectTimingAnomalies(url, thresholds = { dns: 100, ttfb: 200 }) { const start = performance.now(); try { await fetch(url, { cache: 'no-store', method: 'HEAD' }); const totalDuration = performance.now() - start; // Get detailed entries if available const entries = performance.getEntriesByName(url); let metrics = { totalDuration }; let anomaly = false; if (entries.length > 0) { const entry = entries[entries.length - 1]; // Get the most recent one const dns = entry.domainLookupEnd - entry.domainLookupStart; const ttfb = entry.responseStart - entry.requestStart; metrics = { ...metrics, dns, ttfb, tcp: entry.connectEnd - entry.connectStart }; if (dns > thresholds.dns || ttfb > thresholds.ttfb) { anomaly = true; } } else { // Fallback if Resource Timing API is not available or cleared // Simple total duration check (rough estimate) if (totalDuration > (thresholds.ttfb + thresholds.dns + 50)) { anomaly = true; } } return { anomaly, metrics }; } catch (error) { return { anomaly: false, error: error.message }; } }