Bitcoin Forum
August 07, 2020, 07:02:20 PM *
News: Latest Bitcoin Core release: 0.20.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1] 2 3 »  All
  Print  
Author Topic: Captcha bypass  (Read 1760 times)
theymos
Administrator
Legendary
*
Offline Offline

Activity: 3836
Merit: 7876


View Profile
October 03, 2018, 01:49:32 AM
Merited by cellard (10), ChipMixer (10), sister1001 (5), bob123 (3), ETFbitcoin (2), LoyceV (2), BitMaxz (2), DarkStar_ (2), crairezx20 (2), Mr. Big (2), Polar91 (2), AverageGlabella (2), Cøbra (2), mprep (1), xandry (1), seoincorporation (1), Marvell1 (1), DdmrDdmr (1), sncc (1)
 #1

You can now bypass the login CAPTCHA by bookmarking the link generated for you here: https://bitcointalk.org/captcha_code.php

If it causes problems, I might restrict it to Jr Members and above or something, but currently anyone can do it.

1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD
1596826940
Hero Member
*
Offline Offline

Posts: 1596826940

View Profile Personal Message (Offline)

Ignore
1596826940
Reply with quote  #2

1596826940
Report to moderator
"Apparently, so I am told, there exist "people" who prefer to wipe sitting down. From the front. Initial research indicates it could be up to half the population." -- benjamindees
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
angel55
Full Member
***
Offline Offline

Activity: 630
Merit: 170



View Profile
October 03, 2018, 02:43:01 AM
 #2

You can now bypass the login CAPTCHA by bookmarking the link generated for you here: https://bitcointalk.org/captcha_code.php

If it causes problems, I might restrict it to Jr Members and above or something, but currently anyone can do it.

Excellent. CAPTCHAs can be quite infuriating at times.
Cøbra
Bitcoin.org domain administrator
Full Member
***
Offline Offline

Activity: 120
Merit: 370


View Profile WWW
October 03, 2018, 02:44:22 AM
 #3

Thank you!

The captcha on the log in page was driving everyone crazy, especially Tor users.
eddie13
Legendary
*
Offline Offline

Activity: 1568
Merit: 1492


BTC or BUST


View Profile
October 03, 2018, 03:06:54 AM
 #4

Great! Hope it works because these are exactly the type of people whose posts I like to read..
Maybe nullius will come back..
mk4
Legendary
*
Offline Offline

Activity: 1386
Merit: 1519


Dank memes: 9999


View Profile WWW
October 03, 2018, 03:41:04 AM
 #5

This is a huge lifesaver for the Tor users, for those who want to hide their crypto-related activity from their ISPs. You can never have enough opsec. +1

Little Mouse
Sr. Member
****
Offline Offline

Activity: 672
Merit: 304


PM me for Campaign Management, TG-@LT_Mouse


View Profile
October 03, 2018, 05:18:18 AM
 #6

Will hacking an account through this link be easy than previous? I'm not a hacker  Grin Just trying to know.
BTW, it's a great edition, no doubt. Lots of people were looking for a solution to this. Some even asked for a paid solution.





BUY & SELL
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
BITCOIN ETHEREUM RIPPLE
FAQ
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
AFFILIATE PROGRAM




░██████████████████░
████████████████████
█████████▀░░░███████
█████████░░▄████████
███████▀▀░░▀▀███████
███████▄▄░░▄▄███████
█████████░░█████████

█████████░░█████████

█████████▄▄█████████

████████████████████

░██████████████████░
░██████████████████░
████████████████████
████████████▀▀▀█▀███
███░▀█████▀░░░░░▀███
███▌░░░▀▀▀░░░░░░████
████▄░░░░░░░░░░░████
█████▀░░░░░░░░░█████

██████▄░░░░░▄▄██████

█████▄▄▄▄███████████

████████████████████

░██████████████████░
░██████████████████░
████████████████████
████████████████████
███████████▀▀░░▐████
███████▀▀░░░░░█████
████▀░░░▄█▀░░░▐█████
█████▄▄█▀░░░░░██████

███████▌▄▄▄▐██████

████████████████████

████████████████████

░██████████████████░
InvoKing
Legendary
*
Offline Offline

Activity: 1694
Merit: 1065


✋(▀Ĺ̯ ▀-͠ )


View Profile WWW
October 03, 2018, 05:27:48 AM
 #7

Will hacking an account through this link be easy than previous?

Normally it has 0 effect on the hacking thing. It is just a link that will let you insert your login without resolving captcha. If the hacker already has your credentials, he will hack your account whether he has this link or not.

PSPD:law and order enforcement!
Press Section Police Department!
Coolcryptovator
Hero Member
*****
Offline Offline

Activity: 868
Merit: 1351


Need Campaign Manager? https://bit.ly/3eFIP1a


View Profile WWW
October 03, 2018, 05:36:53 AM
 #8

Will hacking an account through this link be easy than previous? I'm not a hacker  Grin Just trying to know.

Not really, it's just for bypass captcha. Still you need login details for enter the website. I think it will be more easy to save your account from phishing site. Because you already bookmarked original link. Also ddos attacker will not able to attack by this link, because this link generated for each account. Before get this link you have to login first. So ddos attacker will not able to bypass captcha.





.
.




░██████████████████░
████████████████████
█████████▀░░░███████
█████████░░▄████████
███████▀▀░░▀▀███████
███████▄▄░░▄▄███████
█████████░░█████████

█████████░░█████████

█████████▄▄█████████

████████████████████

░██████████████████░
░██████████████████░
████████████████████
████████████▀▀▀█▀███
███░▀█████▀░░░░░▀███
███▌░░░▀▀▀░░░░░░████
████▄░░░░░░░░░░░████
█████▀░░░░░░░░░█████

██████▄░░░░░▄▄██████

█████▄▄▄▄███████████

████████████████████

░██████████████████░
░██████████████████░
████████████████████
████████████████████
███████████▀▀░░▐████
███████▀▀░░░░░█████
████▀░░░▄█▀░░░▐█████
█████▄▄█▀░░░░░██████

███████▌▄▄▄▐██████

████████████████████

████████████████████

░██████████████████░
tactac
Full Member
***
Offline Offline

Activity: 448
Merit: 121


self made Full member (^-^)v


View Profile WWW
October 03, 2018, 05:40:48 AM
 #9

Thank you!!

Perhaps I am not a bot, but it was sometimes difficult to clear the CAPTCHA... (Especially the stage of checking the shop's signboard was difficult Cry)

Lizzylove1
Member
**
Offline Offline

Activity: 615
Merit: 10

Worlds Simplest Cryptocurrency Walle


View Profile
October 03, 2018, 08:29:32 AM
 #10

Thanks for this. I will show it to my BTT friends. There are days I get frustrated when logging in because of captcha and I will just chill hoping to get a quick verification later on. There are days I will have to severally close my browser.
LoyceV
Legendary
*
Offline Offline

Activity: 1932
Merit: 6748


Thick-Skinned Gang Leader


View Profile WWW
October 03, 2018, 08:57:35 AM
 #11

Great! Hope it works because these are exactly the type of people whose posts I like to read..
Maybe nullius will come back..
I've sent him an email already Cheesy

Will hacking an account through this link be easy than previous?
You still need to set a decent password. If it's difficult enough, it can't be brute-forced.

mk4
Legendary
*
Offline Offline

Activity: 1386
Merit: 1519


Dank memes: 9999


View Profile WWW
October 03, 2018, 09:17:00 AM
 #12

Will hacking an account through this link be easy than previous?

Normally it has 0 effect on the hacking thing. It is just a link that will let you insert your login without resolving captcha. If the hacker already has your credentials, he will hack your account whether he has this link or not.

It actually has an effect. If a hacker gets hold of the link, then the hacker can freely attempt to bruteforce your password; as they'd normally have to pay a good amount of money for captcha solvers(like 2captcha, deathbycaptcha, etc). It probably may not make it easier, but it's definitely a lot cheaper. This is why Theymos implemented a Reset feature for the link to be changed if ever you think someone else has your link.

Jet Cash
Legendary
*
Offline Offline

Activity: 1694
Merit: 1990


https://fittotalk.com/english-talk/


View Profile WWW
October 03, 2018, 09:27:52 AM
 #13

Does the captcha vary between countries. Whenever I change login details, all I have to do it to tick the captcha box. I think I have only triggered the image verification extension on a couple of occasions since it was implemented.

I want to buy some Bitcoin in £100 blocks from trusted UK forum members.
Payment by Sterling faster payments to a UK bank account.
Exchange rate at the quoted rate by xe.com at the time of contract arrangement.
LoyceV
Legendary
*
Offline Offline

Activity: 1932
Merit: 6748


Thick-Skinned Gang Leader


View Profile WWW
October 03, 2018, 09:31:08 AM
Merited by Jet Cash (2)
 #14

Does the captcha vary between countries.
It varies per country, IP address, browser fingerprinting, or anything else Google knows or wants to know about you Tongue
I've noticed that a logged in Gmail in the same browser helps too, and if you only use captcha a few times per day, just one click is enough most of the time.
That's why it's mainly a problem for Tor users, who share their exit IP with many others.

jackg
Copper Member
Legendary
*
Offline Offline

Activity: 1820
Merit: 1783


https://bit.ly/387FXHi ← lightning theory


View Profile
October 03, 2018, 02:47:40 PM
 #15

Does the captcha vary between countries.
It varies per country, IP address, browser fingerprinting, or anything else Google knows or wants to know about you Tongue
I've noticed that a logged in Gmail in the same browser helps too, and if you only use captcha a few times per day, just one click is enough most of the time.
That's why it's mainly a problem for Tor users, who share their exit IP with many others.

I don't think gmail would help too much with tor either.
A good precise tap of the ticking box on a normal computer does enough. If you're precise and natural enough for google to believe you're not a bot, I believe you can get in quite easy on the first few attempts from you IP. However, using recaptcha on a lot of occasions can make the image box show up, when I was in college you used to have to do the image verification every time you wanted to fill a recaptcha no matter what else you'd done and logged onto on that machine...

RocketSingh
Legendary
*
Offline Offline

Activity: 1625
Merit: 1032


View Profile
October 03, 2018, 04:25:57 PM
 #16

You can now bypass the login CAPTCHA by bookmarking the link generated for you here: https://bitcointalk.org/captcha_code.php

If it causes problems, I might restrict it to Jr Members and above or something, but currently anyone can do it.

Good job buddy. Good job.

Just wanna know, do you have any formal PHP knowledge or its self-taught?
cellard
Legendary
*
Offline Offline

Activity: 1372
Merit: 1212


View Profile
October 04, 2018, 02:49:16 AM
 #17

Does the captcha vary between countries.
It varies per country, IP address, browser fingerprinting, or anything else Google knows or wants to know about you Tongue
I've noticed that a logged in Gmail in the same browser helps too, and if you only use captcha a few times per day, just one click is enough most of the time.
That's why it's mainly a problem for Tor users, who share their exit IP with many others.

I don't think gmail would help too much with tor either.
A good precise tap of the ticking box on a normal computer does enough. If you're precise and natural enough for google to believe you're not a bot, I believe you can get in quite easy on the first few attempts from you IP. However, using recaptcha on a lot of occasions can make the image box show up, when I was in college you used to have to do the image verification every time you wanted to fill a recaptcha no matter what else you'd done and logged onto on that machine...

Captchas are hell with Tor. In most cases, you'll be forced to compromise your security by being forced to enable javascript, iframes and so on so the thing shows up, and hackers love javascript.

But yeah, I just tried theymos' workaround and it will save me so much time. Recently I made a thread asking for some ideas to bypass captcha, I was even willing to pay. It's awesome that he is still adding things to the forum and he did it for free. Now I will no longer have nightmares with traffic signs and crossroads.

The only added risk is that if your computer is compromised, they could get the link with the code. He mentioned owning that code makes bruteforcing the pass easier. Anyone has the math?
theymos
Administrator
Legendary
*
Offline Offline

Activity: 3836
Merit: 7876


View Profile
October 04, 2018, 03:12:15 AM
 #18

The only added risk is that if your computer is compromised, they could get the link with the code. He mentioned owning that code makes bruteforcing the pass easier. Anyone has the math?

If your password is decent and unique to bitcointalk.org, then brute-forcing isn't going to be possible via the Internet. I can't imagine anyone being able to do more than a few hundred attempts per second, which is far slower than if you had the password hash.

The main reason why the login captcha is necessary at all is that whenever some site's username/password database is leaked anywhere on the Internet, hackers would come and try all of those logins here, grabbing a few accounts from people who shared passwords, and sometimes slowing down the forum from the rapid barrage of login attempts. These codes are sufficient for preventing that on any large scale. For individual users, the main thing is to not share passwords, not even with minor variations between sites.

1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD
ETFbitcoin
Legendary
*
Offline Offline

Activity: 2072
Merit: 2456

Use SegWit and enjoy lower fees.


View Profile WWW
October 04, 2018, 03:24:24 AM
 #19

At last, now i don't need to do face with reCAPTCHA 2-20 times which often says "Please Try Again" even if you submit correct answer Tongue

Maybe nullius will come back..

And other early members

ChipMixer
Sr. Member
****
Offline Offline

Activity: 365
Merit: 372


ChipMixer.com | ChipMixerwzxtzbw.onion


View Profile WWW
October 15, 2018, 09:16:58 PM
 #20

You can now bypass the login CAPTCHA by bookmarking the link generated for you here: https://bitcointalk.org/captcha_code.php
Thank you very much.

Pages: [1] 2 3 »  All
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!