What Is PerimeterX (HUMAN Security)?

By the Scrappey Research Team

Paste into ChatGPT, Claude, or any LLM

What Is PerimeterX (HUMAN Security)? — conceptual illustration

On this page

PerimeterX, now operating as part of HUMAN Security, is a bot-protection vendor whose biggest asset is its network. Bot protection means software that sits in front of a website and decides whether each visitor is a real person or an automated script. PerimeterX protects 29,650+ sites — spanning major retail, real-estate, and ticketing platforms — and checks roughly 15 trillion interactions per week across 3 billion devices. The key idea: get detected on one customer's site and your fingerprint (the unique profile of your browser and connection) is flagged across the entire network. That cross-site reputation effect is the strongest in the industry.

Sites protected	29,650+ retail, real-estate & ticketing sites
Weekly interactions verified	~15 trillion across 3 billion devices
Detection cookies	_px3, _pxde, _pxhd
Scoring model	5-vector unified — TLS + IP + headers + JS FP + behaviour
Network effect	Reputation shared across all customers — fingerprint burns are global

How PerimeterX scores requests

PerimeterX checks five things at once, and all five must look human at the same time: your TLS fingerprint (TLS is the encryption layer behind https, and its handshake reveals which client you really are), your IP reputation, the order and content of your HTTP headers, your JavaScript fingerprint (values the browser exposes like canvas, WebGL, and audio), and your behaviour (mouse movement, scrolling, how long you linger). Fixing only one or two has zero effect — the score is combined, so it needs the full set. This is unlike Cloudflare (where TLS plus IP gets you a long way) or DataDome (where IP weight is dominant).

The fingerprint is packed into the _px3 cookie and sent in a POST request to collector-PXxxxxxx.perimeterx.net. The "Human Challenge" — a press-and-hold button — is the visible fallback shown when your score is borderline. A hard block instead returns a 403 error with no challenge at all.

The network effect

Because HUMAN watches signals from 29,650 sites at the same time, a fingerprint flagged on one customer's site is automatically treated as lower-trust everywhere else. This cross-site reputation is what makes the network the company's strongest asset: a single browser profile that appears across many unrelated domains looks different from a real user, who normally visits a small set of sites from one consistent device. Tools such as Camoufox assign each browser instance its own coherent profile, which is how a per-domain isolation model works in practice.

Why all five vectors are scored together

Because the score is combined, PerimeterX evaluates all five vectors as one picture, and a real browser session is coherent across every one of them:

TLS: the handshake of a mainstream browser such as Chrome or a real Camoufox / Chrome instance.
IP: residential or mobile connections behave differently from datacenter ranges, which PerimeterX weights heavily.
Headers: the exact header order and capitalisation a given browser version sends.
JS fingerprint: values that are internally consistent — JS patches whose Function.toString() output reveals they have been rewritten stand out.
Behaviour: the navigation, mouse movement, and timing patterns a person naturally produces.

Managed verification APIs (such as Bright Data or Zyte) maintain this coherence across all five vectors for authorized browser workflows on sites you are permitted to access, billed per request, which often saves engineering time at volume.

Code example

python

from camoufox.sync_api import Camoufox

# Camoufox with geoip aligns all 5 identity vectors and ships
# a real canvas + WebGL + audio fingerprint
with Camoufox(
    headless=True,
    geoip=True,
    proxy={
        "server": "http://residential:port",
        "username": "user", "password": "pass",
    },
    humanize=True,   # adds human-like mouse/scroll cadence
) as browser:
    page = browser.new_page()
    page.goto("https://perimeterx-protected.com/")
    page.wait_for_timeout(2500)   # let _px3 collector POST
    data = page.goto("https://perimeterx-protected.com/api/items").json()

Related terms

What Is Anti-Bot Detection?

Anti-bot detection is the set of techniques websites use to tell automated traffic apart from real human visitors — and then block, challeng…

What Is Browser Fingerprinting?

Browser fingerprinting is a technique that identifies and tracks a visitor by combining dozens of small, observable characteristics of their…

What Is Camoufox?

Camoufox is a fork of Firefox with anti-fingerprinting patches applied at the C++ build level. That phrase matters: most anti-fingerprinting…

What Is a Residential Proxy?

A residential proxy sends your web traffic through a real home internet connection — a regular broadband or fiber line — instead of through …

Anti-Bot Vendor Detection Cheatsheet

A useful first step when working with any protected site you are authorized to access is identifying which anti-bot vendor sits in front of …

What Is a CAPTCHA Solver?

A CAPTCHA solver is software that automatically completes CAPTCHA challenges for an automated client. A CAPTCHA is the "prove you're human" …

Concept map

How PerimeterX (HUMAN) connects

The terms most directly tied to this one. Hover a node to see its neighbours, click to preview, drag to rearrange.

0 terms · 0 connections

You are here · Anti-Bot

Tools & solutions for this topic

Frequently asked questions

Is PerimeterX the same as HUMAN Security?

Yes — they are one company now. HUMAN Security acquired PerimeterX in 2022, and the PerimeterX product now runs as part of HUMAN's Bot Defender. The cookie names (_px3, _pxde) were left unchanged so existing integrations keep working.

What does the "Human Challenge" press-and-hold button do?

While you hold the button, it measures how long you hold, how steady the pressure is, your finger movement, and the timing. Clicking the button itself is easy — the real decision comes from the surrounding fingerprint and IP, which also decide whether you ever see the button at all. Failing the challenge usually does not give you a CAPTCHA; it gives you a 403 error with no way forward.

Why is the network effect so important?

Because PerimeterX shares reputation across 29,650+ customers, a fingerprint that fails on one customer's site is instantly treated as lower-trust on another. Scrapers that reuse fingerprints (the same canvas hash, the same TLS profile, the same IP) across targets burn through them very quickly. Keeping each target on its own isolated session is essential.

Does a request without a real browser look the same to PerimeterX?

No. Because PerimeterX weighs behavioural signals (mouse movement, scrolling, timing) alongside TLS, IP, headers, and JS fingerprint, a plain HTTP client provides none of the behavioural vectors and looks very different from a real browser session. The higher a customer's configuration, the more those behavioural signals matter to the combined score.

Last updated: 2026-05-31