Detection

AI Cheating Detection for Online Exams

Identify AI-assisted misconduct and unauthorized tools with browser-native integrity monitoring.

AI cheating detectionChatGPT cheating examsexam AI monitoring
Network interception

Flags requests to ChatGPT, Claude, Gemini, and 40+ AI domains — locally, without sending URLs to any server.

On-device analysis

Detection runs in WebAssembly in the candidate's browser. No video upload required.

Reviewer evidence

Structured event timelines and trust scores for proportionate, contestable decisions.

The new cheating landscape

Generative AI tools have changed assessment security. Candidates can access AI assistants through multiple vectors — browser extensions, network calls to AI APIs, remote desktop sessions controlled by a second person, or virtual cameras feeding live video to an AI tool. Legacy proctoring that focuses solely on video recording misses most of these.

What ProctorSafe detects

AI extension and network interception

ProctorSafe patches fetch and XMLHttpRequest on the page and matches outbound requests against a domain blocklist. Covered services include ChatGPT, Claude (Anthropic), Gemini, Microsoft Copilot, Perplexity, and similar AI tools. When a match occurs, a NETWORK_SUSPECT event is emitted with the domain, method, and timestamp — but never the full URL, which may contain sensitive exam content.

Virtual camera detection

Candidates routing their webcam through OBS Virtual Camera, ManyCam, SplitCam, or AnyDesk virtual devices can feed the camera feed to a second person or AI tool in real time. ProctorSafe enumerates videoinput device labels at session start and flags labels matching known virtual camera software, emitting a VIRTUAL_CAMERA_DETECTED event.

Remote desktop and screen sharing

ProctorSafe intercepts getDisplayMedia (screen sharing) and monitors device labels for remote desktop tools including TeamViewer and AnyDesk. A REMOTE_DESKTOP_SUSPECTED or SCREEN_SHARING_DETECTED event is emitted with source metadata.

Second-speaker voice detection

During the preflight check, ProctorSafe enrolls a voice profile using log-mel spectral analysis and median F0 (fundamental frequency) pitch gating. If a second voice is detected during the exam — median spectral distance or F0 delta exceeding configurable thresholds — a SECOND_SPEAKER_SUSPECTED event fires. Audio analysis runs entirely on-device; no audio is transmitted.

Tab switching and focus loss

TAB_BLUR and TAB_FOCUS events are emitted with timestamped durations. Brief accidental switches are filtered; sustained navigation away is weighted in the trust score.

Local detection, minimal data collection

Unlike cloud-based proctoring that uploads full video for post-hoc analysis, ProctorSafe runs detection locally in the browser via WebAssembly. The Rust-compiled WASM module handles face detection and gaze tracking without transmitting raw video or audio. Only structured event metadata — timestamps, event types, and severity scores — is sent to the review server.

Trust score: signal aggregation for reviewers

All detected events feed a 0–100 Integrity Budget computed server-side by a deterministic, rule-based algorithm. Events are weighted by severity (CRITICAL / MAJOR / MINOR) and normalized by session duration. Reviewers see a single score alongside a ranked event timeline — enabling rapid triage of high-risk sessions without watching hours of footage.

Evidence for reviewers, not automated punishment

Every detection event is logged with timestamps and severity. Reviewers access structured timelines and trust scores — supporting proportionate, contestable decisions aligned with your academic integrity policies.

Learn more

Frequently Asked Questions

Common questions about privacy, compliance, and integration.

Yes. ProctorSafe intercepts fetch and XMLHttpRequest calls and matches them against a domain blocklist covering ChatGPT, Claude, Gemini, Copilot, and similar services. Only the domain is checked — full URLs never leave the device.

Ready to Get Started?

Try the interactive demo in your browser, or contact us for a walkthrough tailored to your program.