Bitcoin Forum
June 17, 2019, 08:21:13 PM *
News: Latest Bitcoin Core release: 0.18.0 [Torrent] (New!)
 
   Home   Help Search Login Register More  
Pages: [1] 2 3 »  All
  Print  
Author Topic: Captcha bypass  (Read 1377 times)
theymos
Administrator
Legendary
*
Offline Offline

Activity: 3416
Merit: 5923


View Profile
October 03, 2018, 01:49:32 AM
Merited by cellard (10), ChipMixer (10), sister1001 (5), bob123 (3), ETFbitcoin (2), LoyceV (2), BitMaxz (2), crairezx20 (2), DarkStar_ (2), Mr. Big (2), Polar91 (2), AverageGlabella (2), Cøbra (2), mprep (1), xandry (1), Marvell1 (1), seoincorporation (1), DdmrDdmr (1), sncc (1)
 #1

You can now bypass the login CAPTCHA by bookmarking the link generated for you here: https://bitcointalk.org/captcha_code.php

If it causes problems, I might restrict it to Jr Members and above or something, but currently anyone can do it.

1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD

0% MINING FEES FOR THE NEXT MONTH. GET PAID IN BTC, ETH, XMR or RVN.

www.cudominer.com Learn More
Easily run CudoOS from a USB flash drive.
Designed for rigs. Manage your mining remotely from Cudo Console.
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1560802873
Hero Member
*
Offline Offline

Posts: 1560802873

View Profile Personal Message (Offline)

Ignore
1560802873
Reply with quote  #2

1560802873
Report to moderator
1560802873
Hero Member
*
Offline Offline

Posts: 1560802873

View Profile Personal Message (Offline)

Ignore
1560802873
Reply with quote  #2

1560802873
Report to moderator
angel55
Full Member
***
Offline Offline

Activity: 560
Merit: 170



View Profile WWW
October 03, 2018, 02:43:01 AM
 #2

You can now bypass the login CAPTCHA by bookmarking the link generated for you here: https://bitcointalk.org/captcha_code.php

If it causes problems, I might restrict it to Jr Members and above or something, but currently anyone can do it.

Excellent. CAPTCHAs can be quite infuriating at times.

Cøbra
Bitcoin.org domain administrator
Member
**
Offline Offline

Activity: 104
Merit: 189


View Profile WWW
October 03, 2018, 02:44:22 AM
 #3

Thank you!

The captcha on the log in page was driving everyone crazy, especially Tor users.
eddie13
Hero Member
*****
Offline Offline

Activity: 1162
Merit: 926


BTC or BUST


View Profile
October 03, 2018, 03:06:54 AM
 #4

Great! Hope it works because these are exactly the type of people whose posts I like to read..
Maybe nullius will come back..

This Space For Rent
mjglqw
Hero Member
*****
Offline Offline

Activity: 966
Merit: 686


https://coinsources.io/bitcoin


View Profile WWW
October 03, 2018, 03:41:04 AM
 #5

This is a huge lifesaver for the Tor users, for those who want to hide their crypto-related activity from their ISPs. You can never have enough opsec. +1

Little Mouse
Member
**
Offline Offline

Activity: 252
Merit: 24

★Bitvest.io★ Play Plinko or Invest!


View Profile
October 03, 2018, 05:18:18 AM
 #6

Will hacking an account through this link be easy than previous? I'm not a hacker  Grin Just trying to know.
BTW, it's a great edition, no doubt. Lots of people were looking for a solution to this. Some even asked for a paid solution.

▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬ ★ ★ ★ ★ ★ ▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬
PLINKO    |7| SLOTS     (+) ROULETTE    ▼ BIT SPINBITVESTPLAY or INVEST ║ ✔ Rainbot  ✔ Happy Hours  ✔ Faucet
▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬ ★ ★ ★ ★ ★ ▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬
InvoKing
Legendary
*
Offline Offline

Activity: 1344
Merit: 1064


View Profile
October 03, 2018, 05:27:48 AM
 #7

Will hacking an account through this link be easy than previous?

Normally it has 0 effect on the hacking thing. It is just a link that will let you insert your login without resolving captcha. If the hacker already has your credentials, he will hack your account whether he has this link or not.
Coolcryptovator
Copper Member
Sr. Member
****
Offline Offline

Activity: 448
Merit: 724


KnowNoBorders.io


View Profile WWW
October 03, 2018, 05:36:53 AM
 #8

Will hacking an account through this link be easy than previous? I'm not a hacker  Grin Just trying to know.

Not really, it's just for bypass captcha. Still you need login details for enter the website. I think it will be more easy to save your account from phishing site. Because you already bookmarked original link. Also ddos attacker will not able to attack by this link, because this link generated for each account. Before get this link you have to login first. So ddos attacker will not able to bypass captcha.

   ▄▄██████▄▄
  ████████████
███▄▄
 ██████████████▀▀▀██▄
████████████████   ▀██▄
████████████████     ▀██
██████████████       ██▌
██████████████        ▐██
██▌▀▀██████▀▀         ▐██
▐██                   ██▌
 ██▄                 ▄██
  ▀██▄             ▄██▀
    ▀██▄▄▄     ▄▄▄██▀
      ▀▀█████████▀▀





███████████████████████████
███████████▀▀         ▀▀███
████████▀   ▄▄██▄  ▀█▄  ▀██
██████▀  ▄████████▄  ▀█  ██
████▀  ▄██████▄▀  ██▄    ██
███▀  ██████▄▀  ▄▀████▄  ██
██▀  █████▄▀  ▄▀██████  ▄██
██  ▀███▄▀  ▄▀███████  ▄███
██    ▀██▄▄▀███████▀  ▄████
██  █▄  ▀████████▀  ▄██████
██▄  ▀█▄  ▀██▀▀   ▄████████
███▄▄         ▄▄███████████
███████████████████████████
███████████████████████████
████████▀▀       ▀▀████████
█████▀   ▄ ▀███▀ ▄   ▀█████
████  ▄████▄ ▀ ▄████▄  ████
███  ▄ ▀███▀ ▄ ▀███▀ ▄  ███
██  ▄██ ▀▀ ▄███▄ ▀▀ ██▄  ██
██  █▀ ▄█ ███████ █▄ ▀█  ██
██   ▄███▄ █████ ▄███▄   ██
███  ████▀ ▄▄▄▄▄ ▀████  ███
████  ▀ ▄ ▀█████▀ ▄ ▀  ████
█████▄  ▀▀▄ ███ ▄▀▀  ▄█████
████████▄▄       ▄▄████████
███████████████████████████
████████     INDUSTRY LEADING BITCOIN SPORTSBOOK     ████████
LIVE
STREAMING
DAILY PRICE
BOOSTS
LIVE DEALER
CASINO
FAST & SECURE
PAYMENTS
███████████████████████████
████████▀▀       ▀▀████████
█████▀  ▄█▄  ▀  ▄▄   ▀█████
████  ▄  ▀    ▀█████▄  ████
███  ▀█▀   ▀█▄   ▀▀██▄  ███
██  ▄    █▄  ▀██▄▄  ▀█▄  ██
██  █▀ ▄  ▀█▄  ▀███▄  ▀  ██
██    ▄██  ▀██▄  ▀███▄   ██
███  ▀████  ▀███▄  ▀█▀  ███
████  ▀████  ▀████▄    ████
█████▄   ▀▀█▄  ▀▀▀   ▄█████
████████▄▄       ▄▄████████
███████████████████████████
███████████████████████████
████████▀▀ █████ ▀▀████████
█████▀    ▄█████▄    ▀█████
██████▄▄█▀▀ ▄▄▄ ▀▀█▄▄██████
███▀███▀ ▄███▀███▄ ▀███▀███
██   █ ▄██▀     ▀██▄ █   ██
██   █ ██         ██ █   ██
██   █ ▀██▄▄█ █▄▄██▀ █   ██
███▄███▄ ▀██▄▄▄██▀ ▄███▄███
██████▀▀█▄▄ ▀▀▀ ▄▄█▀▀██████
█████▄    ▀█████▀    ▄█████
████████▄▄ █████ ▄▄████████
███████████████████████████





[.
WIN WITH US!
]
tactac
Full Member
***
Offline Offline

Activity: 434
Merit: 120


self made Full member (^-^)v


View Profile WWW
October 03, 2018, 05:40:48 AM
 #9

Thank you!!

Perhaps I am not a bot, but it was sometimes difficult to clear the CAPTCHA... (Especially the stage of checking the shop's signboard was difficult Cry)

Lizzylove1
Jr. Member
*
Offline Offline

Activity: 294
Merit: 2


View Profile
October 03, 2018, 08:29:32 AM
 #10

Thanks for this. I will show it to my BTT friends. There are days I get frustrated when logging in because of captcha and I will just chill hoping to get a quick verification later on. There are days I will have to severally close my browser.

●  ●  ●    CryptoMarketAds    ●  ●  ●
►  Democratize Crypto Advertising & Marketing  ◄
LoyceV
Legendary
*
Offline Offline

Activity: 1512
Merit: 4070


Self-made Legendary outside Meta!


View Profile WWW
October 03, 2018, 08:57:35 AM
 #11

Great! Hope it works because these are exactly the type of people whose posts I like to read..
Maybe nullius will come back..
I've sent him an email already Cheesy

Will hacking an account through this link be easy than previous?
You still need to set a decent password. If it's difficult enough, it can't be brute-forced.

mjglqw
Hero Member
*****
Offline Offline

Activity: 966
Merit: 686


https://coinsources.io/bitcoin


View Profile WWW
October 03, 2018, 09:17:00 AM
 #12

Will hacking an account through this link be easy than previous?

Normally it has 0 effect on the hacking thing. It is just a link that will let you insert your login without resolving captcha. If the hacker already has your credentials, he will hack your account whether he has this link or not.

It actually has an effect. If a hacker gets hold of the link, then the hacker can freely attempt to bruteforce your password; as they'd normally have to pay a good amount of money for captcha solvers(like 2captcha, deathbycaptcha, etc). It probably may not make it easier, but it's definitely a lot cheaper. This is why Theymos implemented a Reset feature for the link to be changed if ever you think someone else has your link.

Jet Cash
Legendary
*
Offline Offline

Activity: 1274
Merit: 1662


TEMP and VOM member and monderator.


View Profile WWW
October 03, 2018, 09:27:52 AM
 #13

Does the captcha vary between countries. Whenever I change login details, all I have to do it to tick the captcha box. I think I have only triggered the image verification extension on a couple of occasions since it was implemented.

Jetty plays Fibonacci music in the Jet Cash coffee lounge thread.
LoyceV
Legendary
*
Offline Offline

Activity: 1512
Merit: 4070


Self-made Legendary outside Meta!


View Profile WWW
October 03, 2018, 09:31:08 AM
Merited by Jet Cash (2)
 #14

Does the captcha vary between countries.
It varies per country, IP address, browser fingerprinting, or anything else Google knows or wants to know about you Tongue
I've noticed that a logged in Gmail in the same browser helps too, and if you only use captcha a few times per day, just one click is enough most of the time.
That's why it's mainly a problem for Tor users, who share their exit IP with many others.

jackg
Copper Member
Legendary
*
Online Online

Activity: 1400
Merit: 1260


https://bit.ly/2FR9nyn - free python tutorials


View Profile
October 03, 2018, 02:47:40 PM
 #15

Does the captcha vary between countries.
It varies per country, IP address, browser fingerprinting, or anything else Google knows or wants to know about you Tongue
I've noticed that a logged in Gmail in the same browser helps too, and if you only use captcha a few times per day, just one click is enough most of the time.
That's why it's mainly a problem for Tor users, who share their exit IP with many others.

I don't think gmail would help too much with tor either.
A good precise tap of the ticking box on a normal computer does enough. If you're precise and natural enough for google to believe you're not a bot, I believe you can get in quite easy on the first few attempts from you IP. However, using recaptcha on a lot of occasions can make the image box show up, when I was in college you used to have to do the image verification every time you wanted to fill a recaptcha no matter what else you'd done and logged onto on that machine...

RocketSingh
Legendary
*
Offline Offline

Activity: 1619
Merit: 1007


View Profile
October 03, 2018, 04:25:57 PM
 #16

You can now bypass the login CAPTCHA by bookmarking the link generated for you here: https://bitcointalk.org/captcha_code.php

If it causes problems, I might restrict it to Jr Members and above or something, but currently anyone can do it.

Good job buddy. Good job.

Just wanna know, do you have any formal PHP knowledge or its self-taught?

cellard
Legendary
*
Offline Offline

Activity: 1372
Merit: 1209


View Profile
October 04, 2018, 02:49:16 AM
 #17

Does the captcha vary between countries.
It varies per country, IP address, browser fingerprinting, or anything else Google knows or wants to know about you Tongue
I've noticed that a logged in Gmail in the same browser helps too, and if you only use captcha a few times per day, just one click is enough most of the time.
That's why it's mainly a problem for Tor users, who share their exit IP with many others.

I don't think gmail would help too much with tor either.
A good precise tap of the ticking box on a normal computer does enough. If you're precise and natural enough for google to believe you're not a bot, I believe you can get in quite easy on the first few attempts from you IP. However, using recaptcha on a lot of occasions can make the image box show up, when I was in college you used to have to do the image verification every time you wanted to fill a recaptcha no matter what else you'd done and logged onto on that machine...

Captchas are hell with Tor. In most cases, you'll be forced to compromise your security by being forced to enable javascript, iframes and so on so the thing shows up, and hackers love javascript.

But yeah, I just tried theymos' workaround and it will save me so much time. Recently I made a thread asking for some ideas to bypass captcha, I was even willing to pay. It's awesome that he is still adding things to the forum and he did it for free. Now I will no longer have nightmares with traffic signs and crossroads.

The only added risk is that if your computer is compromised, they could get the link with the code. He mentioned owning that code makes bruteforcing the pass easier. Anyone has the math?
theymos
Administrator
Legendary
*
Offline Offline

Activity: 3416
Merit: 5923


View Profile
October 04, 2018, 03:12:15 AM
 #18

The only added risk is that if your computer is compromised, they could get the link with the code. He mentioned owning that code makes bruteforcing the pass easier. Anyone has the math?

If your password is decent and unique to bitcointalk.org, then brute-forcing isn't going to be possible via the Internet. I can't imagine anyone being able to do more than a few hundred attempts per second, which is far slower than if you had the password hash.

The main reason why the login captcha is necessary at all is that whenever some site's username/password database is leaked anywhere on the Internet, hackers would come and try all of those logins here, grabbing a few accounts from people who shared passwords, and sometimes slowing down the forum from the rapid barrage of login attempts. These codes are sufficient for preventing that on any large scale. For individual users, the main thing is to not share passwords, not even with minor variations between sites.

1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD
ETFbitcoin
Legendary
*
Offline Offline

Activity: 1666
Merit: 1804

Use SegWit and enjoy lower fees.


View Profile WWW
October 04, 2018, 03:24:24 AM
 #19

At last, now i don't need to do face with reCAPTCHA 2-20 times which often says "Please Try Again" even if you submit correct answer Tongue

Maybe nullius will come back..

And other early members

ChipMixer
Sr. Member
****
Offline Offline

Activity: 341
Merit: 251


ChipMixer.com | ChipMixerwzxtzbw.onion


View Profile WWW
October 15, 2018, 09:16:58 PM
 #20

You can now bypass the login CAPTCHA by bookmarking the link generated for you here: https://bitcointalk.org/captcha_code.php
Thank you very much.

Pages: [1] 2 3 »  All
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!