Reset Password · PC & Mac Help and Assistance

Welcome Guest! To enable all features please Login or Register

Posted by: lucasaid - 10 April 2024 21:31:56
Now GDPR aside, there are still things I do to identify firms browsing my website that I thought I might share... Firstly, https://ipinfo.io/ is invaluable. It can recognize a webserver and all of its properties and then log those properties against that IP address in the massive databse that they maintain. If we look up the IP address of this website, we can see instantly that it is proxied behind cloudflare, but that if we look-up the DNS history at https://securitytrails.com/domain/forum.sircles.net/history/a we can see it has been redirected from a BT connection IP address. If we therefore browse to https://ipaddressinquestion (substituing the IP address onviously) we will receive a certificate error. Upon examining that error we can see that the certificate is a sircles.net certificate. Now we can do exactly the same thing for any IP address we receive from statcounter. I will not give an example IP here so as not to reveal anyone but if we take an IP from our activity stats and browse to https://ipaddressinquestion, substituting the ip address in question once again (sometimes you need to add or remove a few from the last figure as they will not necessarily use their router IP for a VPN or server for instance if the IP ends in 100 try from 95-105) we might be able to discover the domain name of our visitor and therefore trace their identity.

Posted by: lucasaid - 10 April 2024 21:31:56

Now GDPR aside, there are still things I do to identify firms browsing my website that I thought I might share... Firstly, https://ipinfo.io/ is invaluable. It can recognize a webserver and all of its properties and then log those properties against that IP address in the massive databse that they maintain. If we look up the IP address of this website, we can see instantly that it is proxied behind cloudflare, but that if we look-up the DNS history at https://securitytrails.com/domain/forum.sircles.net/history/a we can see it has been redirected from a BT connection IP address. If we therefore browse to https://ipaddressinquestion (substituing the IP address onviously) we will receive a certificate error. Upon examining that error we can see that the certificate is a sircles.net certificate. Now we can do exactly the same thing for any IP address we receive from statcounter. I will not give an example IP here so as not to reveal anyone but if we take an IP from our activity stats and browse to https://ipaddressinquestion, substituting the ip address in question once again (sometimes you need to add or remove a few from the last figure as they will not necessarily use their router IP for a VPN or server for instance if the IP ends in 100 try from 95-105) we might be able to discover the domain name of our visitor and therefore trace their identity.

Important Information: