Is Tor Browser Actually Anonymous? Fingerprint Test (2026)
Tor Browser is the gold standard for anonymity — it routes traffic through three encrypted relays and standardizes your browser fingerprint so all Tor users look identical. But "standardized fingerprint" is not the same as "no fingerprint." And fingerprinting is just one of several ways sites can identify you. Here's what Tor actually protects, what it doesn't, and how to verify your own exposure.
What Tor Browser Does to Your Fingerprint
Tor Browser is built on Firefox ESR with aggressive fingerprint-standardization patches. Its design goal is not to make you invisible, but to make you indistinguishable from every other Tor user. If everyone looks the same, fingerprinting cannot identify individuals.
Standardized Signals
- Canvas: Returns a blank/noisy canvas to all sites — all Tor users return the same value
- WebGL: Blocked by default; renderer info returns
null - Audio: OfflineAudioContext output is standardized to a fixed value
- Fonts: Only a minimal set of fonts is reported — same for all users
- Screen size: Window size snapped to the nearest 200×100px boundary (letterboxing)
- User Agent: Reports a generic Firefox UA, same for all Tor users
- Timezone: Always reports UTC regardless of your actual timezone
- Language: Always reports
en-US - Platform: Always reports
Win32
What Tor Browser Does NOT Protect Against
Tor's anonymity model has real limitations that many users don't understand. The project itself documents these clearly — but they're easy to overlook.
JavaScript Timing Attacks
Tor Browser's high-security mode disables JavaScript entirely. In standard mode, JS runs normally —
and performance.now() with sufficient precision can reveal CPU speed, which reveals
hardware class. Tor reduces timer precision, but this is an arms race, not a solved problem.
Behavioral Fingerprinting
How you type, how you scroll, your mouse movement velocity, your click patterns — these behavioral signals are unique and difficult to standardize. Sites using behavioral biometrics can identify users across sessions even with identical browser fingerprints.
Exit Node Surveillance
Tor encrypts traffic between you and the Tor network, but the exit node — the last relay before the destination site — sees your unencrypted traffic if you're not using HTTPS. Exit nodes can also inject content. Always use HTTPS-only sites when using Tor.
Browser Exploits
Historical deanonymization of Tor users has occurred primarily through browser exploits, not fingerprinting. The FBI's Operation Torpedo (2011) and Freedom Hosting takedown (2013) used Firefox vulnerabilities to execute code that sent users' real IPs to tracking servers. Keeping Tor Browser updated is critical.
Correlation Attacks
An adversary who can observe both the entry and exit points of the Tor network (a "global passive adversary") can correlate traffic timing to deanonymize users. This is a state-level attack not relevant to most threat models, but real for high-value targets.
Tor Browser vs Other Privacy Browsers — Fingerprint Comparison
| Browser | Canvas FP | WebGL | Audio FP | Fonts | Speed | Best For |
|---|---|---|---|---|---|---|
| Tor Browser | Standardized | Blocked | Standardized | Minimal | Slow | Max anonymity |
| Brave (strict) | Randomized | Randomized | Randomized | Partial | Fast | Daily use + privacy |
| Firefox + RFP | Standardized | Partial | Standardized | Standardized | Fast | Privacy-focused users |
| Chrome | Exposed | Exposed | Exposed | Exposed | Fast | Not for privacy |
| Safari | Partial noise | Limited | Partial | Partial | Fast | Apple ecosystem |
Security Levels in Tor Browser
Tor Browser has three security levels that dramatically affect what fingerprinting is possible:
Frequently Asked Questions
Test Your Browser's Real Anonymity
Run UNDETECT.CLUB in any browser — Tor, Brave, Firefox, Chrome — and compare the results side by side.
[ RUN FINGERPRINT TEST ]