Show HN: Poisson – Chrome extension that buries your browsing in decoy traffic(github.com)
github.com
Show HN: Poisson – Chrome extension that buries your browsing in decoy traffic
https://github.com/Daring-Designs/poisson-extension
I built a Chrome extension that generates noise traffic to dilute your browsing profile. Instead of trying to hide what you do online (increasingly difficult), it buries your
real activity in a flood of decoy searches, page visits, and ad clicks across dozens of site categories.
7 comments
Interesting and smart approach - most noise generators are obviously artificial in their traffic patterns.
I've been thinking about browser privacy from a different angle: not hiding what you browse, but hiding what's visible on your screen when you share it. Screen sharing during video calls basically bypasses every privacy tool you have running (VPN, tracker blockers, etc.) because the other person sees your raw screen.
The layered privacy defense framing makes sense. This handles the ISP/tracking side. But what handles the "accidentally showed my email to my entire team during a screen share" side? Different threat model but equally common.
Congrats on shipping.
I've been thinking about browser privacy from a different angle: not hiding what you browse, but hiding what's visible on your screen when you share it. Screen sharing during video calls basically bypasses every privacy tool you have running (VPN, tracker blockers, etc.) because the other person sees your raw screen.
The layered privacy defense framing makes sense. This handles the ISP/tracking side. But what handles the "accidentally showed my email to my entire team during a screen share" side? Different threat model but equally common.
Congrats on shipping.
Hey, smart one!
- Why not allow the behavioral/timing intervals somehow random, with predefined threshholds? Just to simulate real user interactions.
- Also, what’s the criteria for choosing those URLs? (Any security measures?)
- Those URLs being visited are the same? i.e. you mentioned the URLs being visited are hardcoded, so eventually the ISP can filter our those URLs… unless if they are continuously enriched/interchanged.
It does follow links as to randomize it some but yes the hardcoded list or urls is a limitation and possible pattern. This list can be changed and added to (accepting PR's).
Just thinking, I'll make a feature to configure additional urls.
Cool. Also, maybe a nice-to-have efficiency feature is to prevent the visited URLs from fully loading (to minimize excessive data consumption) — i dk if there’s a way to prevent JS from fully loading/downloading certain stuff.
I wonder if it will ”flag” you in cloudflare and google so you will end up in captcha hell.
I haven't seen that so far!