@fanboynz/network-scanner 2.0.57 → 2.0.59

package/lib/openvpn_vpn.js

@@ -5,7 +5,7 @@
 //
 // NOTE: Like wireguard_vpn.js, OpenVPN modifies system-level routing.
 // When running concurrent scans, all traffic routes through the active
-// VPN tunnel � not just the site that requested it. For isolated
+// VPN tunnel � not just the site that requested it. For isolated
 // per-site VPN with concurrency, a SOCKS proxy approach is needed.
 
 const { execSync, spawn } = require('child_process');
@@ -77,13 +77,17 @@ function hasRootPrivileges() {
  * Detect if running inside WSL
  * @returns {boolean}
  */
-function isWSL() {
+const _isWSL = (() => {
   try {
     const release = fs.readFileSync('/proc/version', 'utf8').toLowerCase();
     return release.includes('microsoft') || release.includes('wsl');
   } catch {
     return false;
   }
+})();
+
+function isWSL() {
+  return _isWSL;
 }
 
 /**
@@ -122,9 +126,7 @@ function checkTunDevice() {
  * Ensure temp directory exists with secure permissions
  */
 function ensureTempDir() {
-  if (!fs.existsSync(TEMP_DIR)) {
-    fs.mkdirSync(TEMP_DIR, { recursive: true, mode: 0o755 });
-  }
+  fs.mkdirSync(TEMP_DIR, { recursive: true, mode: 0o755 });
 }
 
 /**
@@ -369,7 +371,7 @@ async function startConnection(configPath, vpnConfig, forceDebug = false) {
   const logPath = path.join(TEMP_DIR, `${connectionName}.log`);
 
   // Clean stale log
-  try { if (fs.existsSync(logPath)) fs.unlinkSync(logPath); } catch {}
+  try { fs.unlinkSync(logPath); } catch {}
 
   // Pre-create log file writable by all so sudo openvpn can write and user can read
   try { fs.writeFileSync(logPath, '', { mode: 0o666 }); } catch {}
@@ -380,9 +382,8 @@ async function startConnection(configPath, vpnConfig, forceDebug = false) {
     console.log(formatLogMessage('debug', `[openvpn] Starting: openvpn ${args.join(' ')}`));
   }
 
-  // Spawn OpenVPN � it daemonizes itself via --daemon, but we spawn
+  // Spawn OpenVPN — it daemonizes itself via --daemon, but we spawn
   // without --daemon so we can track the process directly
-  const filteredArgs = args.filter(a => a !== '--daemon' && a !== connectionName);
   // Remove --daemon and its argument from args, run in foreground
   const fgArgs = [];
   for (let i = 0; i < args.length; i++) {
@@ -508,9 +509,7 @@ function cleanupConnectionFiles(connectionName) {
   ];
 
   for (const file of filesToClean) {
-    try {
-      if (fs.existsSync(file)) fs.unlinkSync(file);
-    } catch {}
+    try { fs.unlinkSync(file); } catch {}
   }
 }
 
@@ -582,11 +581,9 @@ function getConnectionStatus(connectionName) {
 
   // Read last few lines of log
   try {
-    if (fs.existsSync(info.logPath)) {
-      const log = fs.readFileSync(info.logPath, 'utf8');
-      const lines = log.trim().split('\n');
-      status.lastLog = lines.slice(-3).join('\n');
-    }
+    const log = fs.readFileSync(info.logPath, 'utf8');
+    const lines = log.trim().split('\n');
+    status.lastLog = lines.slice(-3).join('\n');
   } catch {}
 
   return status;
@@ -694,12 +691,12 @@ function validateOvpnConfig(ovpnConfig) {
 
   // Privilege check
   if (!hasRootPrivileges()) {
-    result.warnings.push('OpenVPN requires root privileges � run with sudo');
+    result.warnings.push('OpenVPN requires root privileges � run with sudo');
   }
 
   // WSL checks
   if (isWSL()) {
-    result.warnings.push('Running on WSL2 � ensure TUN module is loaded: sudo modprobe tun');
+    result.warnings.push('Running on WSL2 � ensure TUN module is loaded: sudo modprobe tun');
     const tunCheck = checkTunDevice();
     if (!tunCheck.available) {
       result.warnings.push(tunCheck.error);
@@ -862,9 +859,7 @@ function disconnectAll(forceDebug = false) {
   }
 
   // Clean up entire temp directory
-  if (fs.existsSync(TEMP_DIR)) {
-    try { fs.rmSync(TEMP_DIR, { recursive: true, force: true }); } catch {}
-  }
+  try { fs.rmSync(TEMP_DIR, { recursive: true, force: true }); } catch {}
 
   if (forceDebug && results.tornDown > 0) {
     console.log(formatLogMessage('debug',

package/lib/output.js

@@ -5,6 +5,9 @@ const { getTotalDomainsSkipped } = require('./domain-cache');
 const { loadComparisonRules, filterUniqueRules } = require('./compare');
 const { colorize, colors, messageColors, tags, formatLogMessage } = require('./colorize');
 
+// Cache for compiled wildcard regex patterns in matchesIgnoreDomain
+const wildcardRegexCache = new Map();
+
 /**
  * Check if domain matches any ignore patterns (supports wildcards)
  * @param {string} domain - Domain to check
@@ -37,11 +40,14 @@ function matchesIgnoreDomain(domain, ignorePatterns) {
         const baseDomain = pattern.slice(0, -2); // Remove ".*"
         return domain.startsWith(baseDomain + '.');
       } else {
-        // Complex wildcard pattern
-        const regexPattern = pattern
-          .replace(/\./g, '\\.')  // Escape dots
-          .replace(/\*/g, '.*');  // Convert * to .*
-        return new RegExp(`^${regexPattern}$`).test(domain);
+        // Complex wildcard pattern (cached)
+        if (!wildcardRegexCache.has(pattern)) {
+          const regexPattern = pattern
+            .replace(/\./g, '\\.')  // Escape dots
+            .replace(/\*/g, '.*');  // Convert * to .*
+          wildcardRegexCache.set(pattern, new RegExp(`^${regexPattern}$`));
+        }
+        return wildcardRegexCache.get(pattern).test(domain);
       }
     } else {
       // Exact pattern matching
@@ -435,7 +441,7 @@ function writeOutput(lines, outputFile = null, silentMode = false) {
     if (outputFile) {
       // Ensure output directory exists
       const outputDir = path.dirname(outputFile);
-      if (outputDir !== '.' && !fs.existsSync(outputDir)) {
+      if (outputDir !== '.') {
         fs.mkdirSync(outputDir, { recursive: true });
       }
       

package/lib/validate_rules.js

@@ -1,5 +1,11 @@
 const { formatLogMessage } = require('./colorize');
 
+// Pre-compiled regex constants for validation
+const REGEX_LABEL = /^[a-zA-Z0-9-]+$/;
+const REGEX_TLD = /^[a-zA-Z][a-zA-Z0-9]*$/;
+const REGEX_IPv4 = /^(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)$/;
+const REGEX_IPv6 = /^(?:[0-9a-fA-F]{1,4}:){7}[0-9a-fA-F]{1,4}$|^::$|^::1$|^(?:[0-9a-fA-F]{1,4}:)*::(?:[0-9a-fA-F]{1,4}:)*[0-9a-fA-F]{1,4}$/;
+
 /**
  * Enhanced domain validation function
  * @param {string} domain - The domain to validate
@@ -88,8 +94,7 @@ function isValidDomainLabel(label) {
   }
   
   // Label can only contain alphanumeric characters and hyphens
-  const labelRegex = /^[a-zA-Z0-9-]+$/;
-  if (!labelRegex.test(label)) {
+  if (!REGEX_LABEL.test(label)) {
     return false;
   }
   
@@ -115,8 +120,7 @@ function isValidTLD(tld) {
   // but still validate structure
   
   // TLD can contain letters and numbers, but must start with letter
-  const tldRegex = /^[a-zA-Z][a-zA-Z0-9]*$/;
-  if (!tldRegex.test(tld)) {
+  if (!REGEX_TLD.test(tld)) {
     return false;
   }
   
@@ -138,8 +142,7 @@ function isIPAddress(str) {
  * @returns {boolean} True if valid IPv4
  */
 function isIPv4(str) {
-  const ipv4Regex = /^(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)$/;
-  return ipv4Regex.test(str);
+  return REGEX_IPv4.test(str);
 }
 
 /**
@@ -148,9 +151,7 @@ function isIPv4(str) {
  * @returns {boolean} True if valid IPv6
  */
 function isIPv6(str) {
-  // Simplified IPv6 regex - covers most common cases
-  const ipv6Regex = /^(?:[0-9a-fA-F]{1,4}:){7}[0-9a-fA-F]{1,4}$|^::$|^::1$|^(?:[0-9a-fA-F]{1,4}:)*::(?:[0-9a-fA-F]{1,4}:)*[0-9a-fA-F]{1,4}$/;
-  return ipv6Regex.test(str);
+  return REGEX_IPv6.test(str);
 }
 
 /**
@@ -467,15 +468,7 @@ function validateRulesetFile(filePath, options = {}) {
   } = options;
   
   const fs = require('fs');
-  
-  if (!fs.existsSync(filePath)) {
-    return {
-      isValid: false,
-      error: `File not found: ${filePath}`,
-      stats: { total: 0, valid: 0, invalid: 0, comments: 0 }
-    };
-  }
-  
+
   let content;
   try {
     content = fs.readFileSync(filePath, 'utf8');
@@ -721,15 +714,7 @@ function cleanRulesetFile(filePath, outputPath = null, options = {}) {
   
   const fs = require('fs');
   const path = require('path');
-  
-  if (!fs.existsSync(filePath)) {
-    return {
-      success: false,
-      error: `File not found: ${filePath}`,
-      stats: { total: 0, valid: 0, invalid: 0, removed: 0, duplicates: 0 }
-    };
-  }
-  
+
   let content;
   try {
     content = fs.readFileSync(filePath, 'utf8');

package/nwss.js

@@ -2,8 +2,10 @@
 
 // puppeteer for browser automation, fs for file system operations, psl for domain parsing.
 // const pLimit = require('p-limit'); // Will be dynamically imported
-const puppeteer = require('puppeteer');
+const usePuppeteerCore = process.argv.includes('--use-puppeteer-core');
+const puppeteer = usePuppeteerCore ? require('puppeteer-core') : require('puppeteer');
 const fs = require('fs');
+const os = require('os');
 const psl = require('psl');
 const path = require('path');
 const { createGrepHandler, validateGrepAvailability } = require('./lib/grep');
@@ -41,6 +43,8 @@ const { processResults } = require('./lib/post-processing');
 const { colorize, colors, messageColors, tags, formatLogMessage } = require('./lib/colorize');
 // Enhanced mouse interaction and page simulation
 const { performPageInteraction, createInteractionConfig, performContentClicks, humanLikeMouseMove } = require('./lib/interaction');
+// Optional ghost-cursor support for advanced Bezier-based mouse movements
+const { isGhostCursorAvailable, createGhostCursor, ghostMove, ghostClick, ghostRandomMove, resolveGhostCursorConfig } = require('./lib/ghost-cursor');
 // Domain detection cache for performance optimization
 const { createGlobalHelpers, getTotalDomainsSkipped, getDetectedDomainsCount } = require('./lib/domain-cache');
 const { createSmartCache } = require('./lib/smart-cache'); // Smart cache system
@@ -117,7 +121,7 @@ const REALTIME_CLEANUP_THRESHOLD = 8; // Default pages to keep for realtime clea
  */
 function detectPuppeteerVersion() {
   try {
-    const puppeteer = require('puppeteer');
+    const puppeteer = usePuppeteerCore ? require('puppeteer-core') : require('puppeteer');
     let versionString = null;
  
     // Try multiple methods to get version
@@ -151,7 +155,7 @@ function detectPuppeteerVersion() {
 // Enhanced redirect handling
 const { navigateWithRedirectHandling, handleRedirectTimeout } = require('./lib/redirect');
 // Ensure web browser is working correctly
-const { monitorBrowserHealth, isBrowserHealthy, isQuicklyResponsive, performGroupWindowCleanup, performRealtimeWindowCleanup, trackPageForRealtime, updatePageUsage, cleanupPageBeforeReload, purgeStaleTrackers } = require('./lib/browserhealth');
+const { monitorBrowserHealth, isBrowserHealthy, isQuicklyResponsive, performGroupWindowCleanup, performRealtimeWindowCleanup, trackPageForRealtime, updatePageUsage, untrackPage, cleanupPageBeforeReload, purgeStaleTrackers } = require('./lib/browserhealth');
 
 // --- Script Configuration & Constants --- 
 const VERSION = '2.0.33'; // Script version
@@ -203,7 +207,9 @@ const localhostIndex = args.findIndex(arg => arg.startsWith('--localhost'));
 if (localhostIndex !== -1) {
   localhostIP = args[localhostIndex].includes('=') ? args[localhostIndex].split('=')[1] : '127.0.0.1';
 }
+const keepBrowserOpen = args.includes('--keep-open');
 const disableInteract = args.includes('--no-interact');
+const globalGhostCursor = args.includes('--ghost-cursor');
 const plainOutput = args.includes('--plain');
 const enableCDP = args.includes('--cdp');
 const dnsmasqMode = args.includes('--dnsmasq');
@@ -545,8 +551,11 @@ General Options:
   --compress-logs                Compress log files with gzip (requires --dumpurls)
   --sub-domains                  Output full subdomains instead of collapsing to root
   --no-interact                  Disable page interactions globally
+  --ghost-cursor                 Use ghost-cursor Bezier mouse movements (requires: npm i ghost-cursor)
   --custom-json <file>           Use a custom config JSON file instead of config.json
   --headful                      Launch browser with GUI (not headless)
+  --keep-open                    Keep browser open after scan completes (use with --headful)
+  --use-puppeteer-core           Use puppeteer-core with system Chrome instead of bundled Chromium
   --cdp                          Enable Chrome DevTools Protocol logging (now per-page if enabled)
   --remove-dupes                 Remove duplicate domains from output (only with -o)
   --eval-on-doc                 Globally enable evaluateOnNewDocument() for Fetch/XHR interception
@@ -657,6 +666,11 @@ Advanced Options:
   interact_scrolling: true/false              Enable scrolling simulation (default: true)
   interact_clicks: true/false                 Enable element clicking simulation (default: false)
   interact_typing: true/false                 Enable typing simulation (default: false)
+  cursor_mode: "ghost"                        Use ghost-cursor Bezier mouse (requires: npm i ghost-cursor)
+  ghost_cursor_speed: <number>                Ghost-cursor speed multiplier (default: auto)
+  ghost_cursor_hesitate: <milliseconds>       Delay before ghost-cursor clicks (default: 50)
+  ghost_cursor_overshoot: <pixels>            Max ghost-cursor overshoot distance (default: auto)
+  ghost_cursor_duration: <milliseconds>       Ghost-cursor interaction duration (default: interact_duration or 2000)
   whois: ["term1", "term2"]                   Check whois data for ALL specified terms (AND logic)
   whois-or: ["term1", "term2"]                Check whois data for ANY specified term (OR logic)
   whois_server_mode: "random" or "cycle"      Server selection mode: random (default) or cycle through list
@@ -1375,7 +1389,7 @@ function setupFrameHandling(page, forceDebug) {
    */
   async function createBrowser(extraArgs = []) {
     // Create temporary user data directory that we can fully control and clean up
-    const tempUserDataDir = `/tmp/puppeteer-${Date.now()}-${Math.random().toString(36).substring(7)}`;
+    const tempUserDataDir = path.join(os.tmpdir(), `puppeteer-${Date.now()}-${Math.random().toString(36).substring(7)}`);
     userDataDir = tempUserDataDir; // Store for cleanup tracking (use outer scope variable)
 
     // Try to find system Chrome installation to avoid Puppeteer downloads
@@ -1405,11 +1419,15 @@ function setupFrameHandling(page, forceDebug) {
     }
 
     const systemChromePaths = [
+      // Linux / WSL
       '/usr/bin/google-chrome-stable',
       '/usr/bin/google-chrome',
       '/usr/bin/chromium-browser',
       '/usr/bin/chromium',
-      '/snap/bin/chromium'
+      '/snap/bin/chromium',
+      // macOS
+      '/Applications/Google Chrome.app/Contents/MacOS/Google Chrome',
+      '/Applications/Chromium.app/Contents/MacOS/Chromium'
     ];
     // V8 Optimization: Freeze the Chrome paths array since it's constant
     Object.freeze(systemChromePaths);
@@ -1425,6 +1443,10 @@ function setupFrameHandling(page, forceDebug) {
         break;
       }
     }
+    if (usePuppeteerCore && !executablePath) {
+      console.error(formatLogMessage('error', '--use-puppeteer-core requires a system Chrome installation. No Chrome found in standard paths.'));
+      process.exit(1);
+    }
     const browser = await puppeteer.launch({
       // Use system Chrome if available to avoid downloads
       executablePath: executablePath,
@@ -3415,53 +3437,115 @@ function setupFrameHandling(page, forceDebug) {
       }
       }
 
-      if (interactEnabled && !disableInteract) {
-        if (forceDebug) console.log(formatLogMessage('debug', `interaction simulation enabled for ${currentUrl}`));
-        
-        // Mark page as processing during interactions
-        updatePageUsage(page, true);
-        // Use enhanced interaction module with hard abort timeout
-        const INTERACTION_HARD_TIMEOUT = 15000;
-        try {
-          await Promise.race([
-            performPageInteraction(page, currentUrl, interactionConfig, forceDebug),
-            new Promise((_, reject) => setTimeout(() => reject(new Error('interaction hard timeout')), INTERACTION_HARD_TIMEOUT))
-          ]);
-        } catch (interactTimeoutErr) {
-          if (forceDebug) console.log(formatLogMessage('debug', `[interaction] Aborted after ${INTERACTION_HARD_TIMEOUT}ms: ${interactTimeoutErr.message}`));
-        }
-      }
-
       const delayMs = DEFAULT_DELAY;
-      
+
       // Optimized delays for Puppeteer 23.x performance
       const isFastSite = timeout <= TIMEOUTS.FAST_SITE_THRESHOLD;
       const networkIdleTime = TIMEOUTS.NETWORK_IDLE;  // Balanced: 2s for reliable network detection
       const networkIdleTimeout = Math.min(timeout / 2, TIMEOUTS.NETWORK_IDLE_MAX);  // Balanced: 10s timeout
       const actualDelay = Math.min(delayMs, TIMEOUTS.NETWORK_IDLE);  // Balanced: 2s delay for stability
-      
-      // FIX: Check page state before waiting for network idle
-      if (page && !page.isClosed()) {
-        try {
-          await page.waitForNetworkIdle({ 
-            idleTime: networkIdleTime, 
-            timeout: networkIdleTimeout 
-          });
-        } catch (networkIdleErr) {
-          // Page closed or network idle timeout - continue anyway
-          if (forceDebug) console.log(formatLogMessage('debug', `Network idle wait failed: ${networkIdleErr.message}`));
+
+      // Build delay promise (networkIdle + delay + optional flowProxy delay)
+      const delayPromise = (async () => {
+        if (page && !page.isClosed()) {
+          try {
+            await page.waitForNetworkIdle({
+              idleTime: networkIdleTime,
+              timeout: networkIdleTimeout
+            });
+          } catch (networkIdleErr) {
+            if (forceDebug) console.log(formatLogMessage('debug', `Network idle wait failed: ${networkIdleErr.message}`));
+          }
         }
-      }
+        await fastTimeout(actualDelay);
+        if (flowproxyDetection) {
+          const additionalDelay = Math.min(siteConfig.flowproxy_additional_delay || 3000, 3000);
+          if (forceDebug) console.log(formatLogMessage('debug', `Applying flowProxy additional delay: ${additionalDelay}ms`));
+          await fastTimeout(additionalDelay);
+        }
+      })();
 
-      // Use fast timeout helper for Puppeteer 23.x compatibility with better performance
-      await fastTimeout(actualDelay);
+      // Build interaction promise — runs concurrently with delay
+      const interactPromise = (async () => {
+        if (!(interactEnabled && !disableInteract)) return;
+        if (forceDebug) console.log(formatLogMessage('debug', `interaction simulation enabled for ${currentUrl}`));
 
-      // Apply additional delay for flowProxy if detected
-      if (flowproxyDetection) {
-        const additionalDelay = Math.min(siteConfig.flowproxy_additional_delay || 3000, 3000);
-        if (forceDebug) console.log(formatLogMessage('debug', `Applying flowProxy additional delay: ${additionalDelay}ms`));
-        await fastTimeout(additionalDelay);
-      }
+        // Mark page as processing during interactions
+        updatePageUsage(page, true);
+        const INTERACTION_HARD_TIMEOUT = 15000;
+
+        // Check if ghost-cursor mode is enabled for this site
+        const ghostConfig = resolveGhostCursorConfig(siteConfig, globalGhostCursor, forceDebug);
+
+        try {
+          if (ghostConfig) {
+            // Ghost-cursor mode: Bezier-based mouse movements
+            if (forceDebug) console.log(formatLogMessage('debug', `[ghost-cursor] Using ghost-cursor for ${currentUrl}`));
+            const cursor = createGhostCursor(page, { forceDebug });
+            if (cursor) {
+              await Promise.race([
+                (async () => {
+                  const viewport = page.viewport() || { width: 1200, height: 800 };
+                  const ghostDuration = ghostConfig.duration || 2000;
+                  const ghostStart = Date.now();
+                  const ghostTimeLeft = () => ghostDuration - (Date.now() - ghostStart);
+
+                  // Time-based Bezier mouse movements — runs for ghostDuration ms
+                  while (ghostTimeLeft() > 200) {
+                    const toX = Math.floor(Math.random() * (viewport.width - 100)) + 50;
+                    const toY = Math.floor(Math.random() * (viewport.height - 100)) + 50;
+                    await ghostMove(cursor, toX, toY, {
+                      moveSpeed: ghostConfig.moveSpeed,
+                      overshootThreshold: ghostConfig.overshootThreshold,
+                      forceDebug
+                    });
+                    if (ghostTimeLeft() > 100) {
+                      await new Promise(r => setTimeout(r, 25 + Math.random() * 75));
+                    }
+                  }
+                  if (ghostTimeLeft() > 100 && Math.random() < 0.3) {
+                    await ghostRandomMove(cursor, { forceDebug });
+                  }
+                  if (interactionConfig.includeElementClicks && ghostTimeLeft() > 100) {
+                    const clickX = Math.floor(viewport.width * 0.2 + Math.random() * viewport.width * 0.6);
+                    const clickY = Math.floor(viewport.height * 0.2 + Math.random() * viewport.height * 0.6);
+                    await ghostClick(cursor, { x: clickX, y: clickY }, {
+                      hesitate: ghostConfig.hesitate,
+                      forceDebug
+                    });
+                  }
+                  if (interactionConfig.includeScrolling) {
+                    await performPageInteraction(page, currentUrl, {
+                      ...interactionConfig,
+                      mouseMovements: 0,
+                      includeElementClicks: false,
+                      includeTyping: false
+                    }, forceDebug);
+                  }
+                })(),
+                new Promise((_, reject) => setTimeout(() => reject(new Error('ghost-cursor interaction hard timeout')), INTERACTION_HARD_TIMEOUT))
+              ]);
+            } else {
+              if (forceDebug) console.log(formatLogMessage('debug', '[ghost-cursor] Falling back to built-in mouse'));
+              await Promise.race([
+                performPageInteraction(page, currentUrl, interactionConfig, forceDebug),
+                new Promise((_, reject) => setTimeout(() => reject(new Error('interaction hard timeout')), INTERACTION_HARD_TIMEOUT))
+              ]);
+            }
+          } else {
+            // Standard built-in mouse interaction
+            await Promise.race([
+              performPageInteraction(page, currentUrl, interactionConfig, forceDebug),
+              new Promise((_, reject) => setTimeout(() => reject(new Error('interaction hard timeout')), INTERACTION_HARD_TIMEOUT))
+            ]);
+          }
+        } catch (interactTimeoutErr) {
+          if (forceDebug) console.log(formatLogMessage('debug', `[interaction] Aborted after ${INTERACTION_HARD_TIMEOUT}ms: ${interactTimeoutErr.message}`));
+        }
+      })();
+
+      // Run delay and mouse interaction concurrently — mouse moves while page settles
+      await Promise.all([delayPromise, interactPromise]);
 
       // Use fast timeout helper for consistent Puppeteer 23.x compatibility
 
@@ -3893,11 +3977,14 @@ function setupFrameHandling(page, forceDebug) {
           }
         }
 
-        try {
-          await page.close();
-          if (forceDebug) console.log(formatLogMessage('debug', `Page closed for ${currentUrl}`));
-        } catch (pageCloseErr) {
-          if (forceDebug) console.log(formatLogMessage('debug', `Failed to close page for ${currentUrl}: ${pageCloseErr.message}`));
+        if (!keepBrowserOpen) {
+          try {
+            untrackPage(page);
+            await page.close();
+            if (forceDebug) console.log(formatLogMessage('debug', `Page closed for ${currentUrl}`));
+          } catch (pageCloseErr) {
+            if (forceDebug) console.log(formatLogMessage('debug', `Failed to close page for ${currentUrl}: ${pageCloseErr.message}`));
+          }
         }
       }
     }
@@ -4511,6 +4598,14 @@ function setupFrameHandling(page, forceDebug) {
   wgDisconnectAll(forceDebug);
   ovpnDisconnectAll(forceDebug);
 
+  // Keep browser open if --keep-open flag is set (useful with --headful for inspection)
+  if (keepBrowserOpen && !launchHeadless) {
+    console.log(messageColors.info('Browser kept open.') + ' Close the browser window or press Ctrl+C to exit.');
+    await new Promise((resolve) => {
+      browser.on('disconnected', resolve);
+    });
+  }
+
   // Perform comprehensive final cleanup using enhanced browserexit module
   if (forceDebug) console.log(formatLogMessage('debug', `Starting comprehensive browser cleanup...`));
 
@@ -4535,7 +4630,7 @@ function setupFrameHandling(page, forceDebug) {
   if (forceDebug) {
     console.log(formatLogMessage('debug', `Final cleanup results: ${cleanupResult.success ? 'success' : 'failed'}`));
     console.log(formatLogMessage('debug', `Browser closed: ${cleanupResult.browserClosed}, Temp files cleaned: ${cleanupResult.tempFilesCleanedCount || 0}, User data cleaned: ${cleanupResult.userDataCleaned}`));
-    
+
     if (cleanupResult.errors.length > 0) {
       cleanupResult.errors.forEach(err => console.log(formatLogMessage('debug', `Cleanup error: ${err}`)));
     }
@@ -4543,10 +4638,10 @@ function setupFrameHandling(page, forceDebug) {
 
   // Final aggressive cleanup to catch any remaining temp files
   if (forceDebug) console.log(formatLogMessage('debug', 'Performing final aggressive temp file cleanup...'));
-  await cleanupChromeTempFiles({ 
-    includeSnapTemp: true, 
+  await cleanupChromeTempFiles({
+    includeSnapTemp: true,
     forceDebug,
-    comprehensive: true 
+    comprehensive: true
   });
   await fastTimeout(TIMEOUTS.BROWSER_STABILIZE_DELAY); // Give filesystem time to sync
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@fanboynz/network-scanner",
-  "version": "2.0.57",
+  "version": "2.0.59",
   "description": "A Puppeteer-based network scanner for analyzing web traffic, generating adblock filter rules, and identifying third-party requests. Features include fingerprint spoofing, Cloudflare bypass, content analysis with curl/grep, and multiple output formats.",
   "main": "nwss.js",
   "scripts": {
@@ -10,6 +10,7 @@
     "lint": "eslint *.js lib/*.js"
   },
   "dependencies": {
+    "ghost-cursor": "^1.4.2",
     "lru-cache": "^10.4.3",
     "p-limit": "^4.0.0",
     "psl": "^1.15.0",
@@ -48,6 +49,9 @@
     "url": "https://github.com/ryanbr/network-scanner/issues"
   },
   "homepage": "https://github.com/ryanbr/network-scanner",
+  "optionalDependencies": {
+    "puppeteer-core": ">=20.0.0"
+  },
   "devDependencies": {
     "eslint": "^10.0.2",
     "globals": "^16.3.0"

package/.clauderc

@@ -1,30 +0,0 @@
-{
-  "description": "Network scanner that monitors website requests and generates blocking rules. Uses Puppeteer to load sites, intercepts network traffic, matches patterns, and outputs rules in various formats (adblock, dnsmasq, hosts file, etc.).",
-  
-  "conventions": [
-    "Store modular functionality in ./lib/ directory with focused, single-purpose modules",
-    "Use messageColors and formatLogMessage from ./lib/colorize for consistent console output",
-    "Implement timeout protection for all Puppeteer operations using Promise.race patterns",
-    "Handle browser lifecycle with comprehensive cleanup in try-finally blocks",
-    "Validate all external tool availability before use (grep, curl, whois, dig)",
-    "Use forceDebug flag for detailed logging, silentMode for minimal output"
-  ],
-  
-  "files": {
-    "important": [
-      "nwss.js",
-      "config.json",
-      "lib/*.js",
-      "*.md",
-      "nwss.1"
-    ],
-    "ignore": [
-      "node_modules/**",
-      "logs/**",
-      "sources/**",
-      ".cache/**",
-      "*.log",
-      "*.gz"
-    ]
-  }
-}