Browser Anti-Detection (Part 1): TLS Handshake and HTTP/2 Frames — You're Identified Before JS Runs
Camoufox's C++ engine-level spoofing covers the JS layer, but it can't touch the transport layer. The TLS handshake identifies you as script or human before the first HTTP request.