Anti-Detect Automation Detection (AAD) Challenge

Overview

The Anti-Detect Automation Detection (AAD) challenge evaluates a participant`s ability to reliably detect browser automation frameworks operating inside anti-detect browsers, while preserving human safety.

Evaluation runs simulate real-world anti-detect usage where static signals are masked and fingerprints are fresh. Detection must rely on runtime behavior and orchestration patterns.

Anti-Detect Environment

Each evaluation run involves:

• A fresh NST-Browser profile.
• An isolated Docker container per framework.
• Masks for browser fingerprints and no shared state between runs.

NST-Browser Dependency

Participants need an API key from the NSTBrowser dashboard (Professional plan recommended) for local testing.

Features of ADA Detection v1

• Behavior-first detection: Focus on runtime behavioral analysis inside NST-Browser; static driver fingerprints are spoofed.
• Payload-based flow: Detection scripts run in-page, send payloads to local /_payload when automation is confirmed, and must stay silent during human sessions.
• Human safety gate: Random human interactions are injected; flagging more than 2 humans as bots zeros the submission.
• Target coverage update: Required detectors include automation, nodriver, playwright, patchright, and puppeteer.
• Fresh profiles, no state: Each run uses a fresh profile with zero shared state between runs.
• Similarity/time decay: Similarity penalties apply to lookalike submissions; scores decay over 15 days to encourage refreshed heuristics.

Evaluation Flow

1. Submission Received: Detection scripts are submitted via the /score endpoint.
2. Task Generation: A randomized sequence of multiple automation framework runs and human interactions is generated.
3. NST-Browser Launch: A clean instance is started for each task.
4. Execution: Automation frameworks connect via WebSocket, while humans interact manually.
5. Detection Phase: Scripts may emit detection payloads to /_payload.
6. Scoring: Results are aggregated and normalized.

Technical Constraints

• Language: JavaScript (ES6+)
• Environment: NST-Browser only
• Architecture: Docker (amd64 recommended)
• State: Stateless execution with no persistence between runs.

Plagiarism Policy

We maintain strict originality standards:

• All submissions are compared against other participants' SDKs.
• 100% similarity = zero score.
• Similarity above 60% results in proportional score penalties based on the detected similarity percentage.

Submission Path

Dedicated Path: templates/commit/src/detections/

Submit your detection scripts as a JSON payload with the following structure:

{
  "detection_files": [
    { "file_name": "automation.js", "content": "..." },
    { "file_name": "nodriver.js", "content": "..." },
    { "file_name": "playwright.js", "content": "..." },
    { "file_name": "patchright.js", "content": "..." },
    { "file_name": "puppeteer.js", "content": "..." }
  ]
}

Each file must be named exactly as shown and contain self-contained JavaScript (ES6+) detection logic.

Challenge Versions

• v1 (Active after Dec 15, 2025 10:00 UTC) - Payload-based detection with human safety gate

Resources & Guides

• Building a Submission Commit - General submission instructions
• NSTBrowser Official - Professional plan required for local testing
• Challenge Repository
• Miner Repository

📑 References

• Docker - https://docs.docker.com