top | item 46940722

(no title)

Neat demo. I work in this space of bot detection and unfortunately it is trivial to write scripts (or prompt AIs) to insert human-like keystroke and mouse movements. I did so in this demo with about 5 seconds of Cursor use (around 4:25): https://stytch.com/blog/combating-ai-threats-stytchs-device-...

At the same time, I'm sure this still helps against drive-by attackers. For more motivated attackers, it's one more hoop for them to jump through, though you'd want to do some hardening on the client-side script since it's easy to manipulate the Javascript environment.

Edit: I ended up testing it, not bad! The basic script got to about 0.45 in the end, but never was confidently marked as human. With the hint of the 5 metrics in the prompt, a more advanced script did get to 0.63 (human and confident), but that needed the insider information.

discuss

No comments yet.