By understanding how bots works, and understanding what the open source community have built with projects like driverless selenium or others are just not enough. There are a lot of other stuff that could not be faked in the automation level.
So I forked Chromium and created a way to load configuration dynamically so Blink could be controlled based on my request.
At the JS level there's nothing to detect, because nothing is patched at runtime and the browser just natively reports different values.
You can check it out here https://github.com/Cagebase/the-cagebase-browser