Getting started
unmask is a bot challenge built on JA4 TLS fingerprints and other signals. Start with install (pick OS × HTTP server to get the exact commands).
Whether JA4 is available depends on where TLS terminates and native / forward-auth. Find your setup and the topics here:
- JA4 acquisition — table of JA4 availability per setup pattern (the old “deployment topologies” live here)
- LB / CDN setup — getting JA4 from a front LB / CDN (GCP / Cloudflare / AWS etc.)
- Supported distros — the OS × HTTP server matrix
- Backup & restore — back up config / DB / bans, restore on a new host
- Monitoring — Prometheus /metrics endpoint + healthz liveness probe
- FAQ — common operational questions