frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

Open in hackernews

Reverse engineering Twitter's new WASM-based "X-XP-Forwarded-For" antibot header

16•dsekz•1d ago
Twitter/X recently added a new header called X-XP-Forwarded-For, generated and encrypted by their own WASM-based fingerprinting system. This repo breaks down the entire flow: https://github.com/dsekz/twitter-x-xp-forwarded-for-header

Comments

Raed667•1d ago
so the encryption is pretty much hardcoded making it more like an "obfuscation" ?
dsekz•1d ago
You’re right. In this case, just knowing the guest_id is enough to break down the header. Twitter’s main goal here is mostly to obfuscate the data and make the reverse engineering process more painful.
seventh12•1d ago
Reversing will always win
dsekz•1d ago
In its current state, the protections are pretty weak. I’m sure they’ll update it, and we’ll see what changes they bring. If this header is meant to serve as an anti-bot measure, then there’s a lot more work they need to do both on the JS and WASM sides. On top of that, processing fingerprint data on the backend, like building user/fingerprint profiles, analyzing detailed browser, device and low level connection info, and using AI to spot patterns, makes the system a lot more complex. However, based on the current implementation, I anticipate they’ll likely stick to a relatively simplistic approach.

People stuck using ancient Windows computers

https://www.bbc.com/future/article/20250516-the-people-stuck-using-ancient-windows-computers
1•rstreefland•1m ago•0 comments

Show HN: I built a free full-stack prompt engineering tool for every AI dev

https://prompt-efficiency-suite.lovable.app/
1•dulra•4m ago•0 comments

Volume label field can't be longer than "VolumeLabel" when formatting in Windows

1•eisolo•7m ago•0 comments

Show HN: Quimera, a data-driven exploiter for Ethereum contracts using LLMs

https://github.com/gustavo-grieco/quimera
1•galapago•8m ago•0 comments

Bit Cloud Launches Hope AI, Enabling Developers to Build Complex Applications

https://bit.cloud/
1•jonnysas36•9m ago•1 comments

AI thinks "vegetative electron microscopy" is real – it's not

https://www.freethink.com/artificial-intelligence/vegetative-electron-microscopy
1•mdp2021•12m ago•0 comments

10 Years of Stable Rust: An Infrastructure Story (By Graydon Hoare)

https://rustfoundation.org/media/10-years-of-stable-rust-an-infrastructure-story/
1•weinzierl•16m ago•0 comments

General Motors Is Now Canada's Best-Selling EV Maker as Tesla Sales Crater

https://insideevs.com/news/761064/gm-ev-sales-canada-tesla-drops/
1•MilnerRoute•18m ago•0 comments

Rust Projects – Write a Redis Clone – Free Book

https://leanpub.com/rustprojects-redis#1.3.0
1•thedigicat•19m ago•0 comments

The Book of Secret Knowledge

https://github.com/trimstray/the-book-of-secret-knowledge
2•AnotherDev415•21m ago•1 comments

The Trackers and SDKs in ChatGPT, Claude, Grok and Perplexity

https://jamesoclaire.com/2025/05/31/the-trackers-and-sdks-in-chatgpt-claude-grok-and-perplexity/
1•ddxv•23m ago•1 comments

Person Do Thing

https://persondothing.com/
1•Cyphase•24m ago•1 comments

She Got an Abortion. So a Texas Cop Used 83,000 Cameras to Track Her Down

https://www.eff.org/deeplinks/2025/05/she-got-abortion-so-texas-cop-used-83000-cameras-track-her-down
1•mdp2021•24m ago•0 comments

We're replacing our 27-node Elasticsearch with a single VictoriaLogs node

https://aus.social/@phs/114583927679254536
1•valyala•26m ago•0 comments

Apple in China

https://thechipletter.substack.com/p/apple-in-china
1•klelatti•26m ago•0 comments

Citizen Scientists Are Making Breakthrough Discoveries in Modern Astronomy

https://le.ac.uk/news/2024/august/kilonova-seekers
1•astroimagery•33m ago•1 comments

Doge cuts to USAid blamed for 300k deaths – most of them children

https://www.thetimes.com/us/american-politics/article/usaid-doge-deaths-children-cuts-7nb83dfkp
2•mnewme•33m ago•0 comments

Car cloning: innocent UK motorists get fines as scams accelerate (2024)

https://www.theguardian.com/money/2024/feb/10/car-cloning-drivers-fines-scams-number-plates
1•zeristor•38m ago•1 comments

Using lots of little tools to aggressively reject the bots

https://lambdacreate.com/posts/68
2•archargelod•41m ago•0 comments

Veo 3 Video Generator Twitter Discussions

https://komiko.app/video/veo-3
1•PaulineGar•49m ago•0 comments

Scam Testing Claude Opus

https://twitter.com/adonis_singh/status/1928400751958655202
2•aaviator42•52m ago•0 comments

1986 Austin Maestro Countryman

https://silodrome.com/austin-maestro-countryman/
2•austinallegro•1h ago•0 comments

Show HN: Superclass – GPT-Powered Document Classification Service

https://github.com/adaptive-scale/superclass
1•debarshri•1h ago•0 comments

Julia Garner and Anthony Boyle to Portray Caroline Ellison and SBF in New Series

https://twitter.com/netflix/status/1928153876475097117
2•Michelangelo11•1h ago•0 comments

Implementing a Forth

https://ratfactor.com/forth/implementing
2•todsacerdoti•1h ago•0 comments

Hip: C++ Heterogeneous-Compute Interface for Portability

https://github.com/ROCm/hip
1•doener•1h ago•0 comments

Ask HN: What's your most unpopular dev opinion?

5•Sourabhsss1•1h ago•4 comments

LA28's plan for a car-free Olympics now includes air taxis the price of an Uber

https://www.latimes.com/business/story/2025-05-15/la28-electric-air-taxis-car-free-olympics
1•PaulHoule•1h ago•0 comments

Prompt Design at Parahelp

https://parahelp.com/blog/prompt-design
1•saikatsg•1h ago•0 comments

Could AI Make a Scorsese Movie? Demis Hassabis and Darren Aronofsky Discuss

https://www.ft.com/content/2fff10ea-f87e-4aaa-ae0e-50d17022dfa3
4•admp•1h ago•0 comments