[Feature] Bypass Press-and-Hold HUMAN challange

[gabrielemidulla]

Feature request

I'm trying to create an e-commerce WebScraper, but the website I'm targeting uses a HUMAN Press-and-Hold captcha. I have tried simulating user actions to bypass it, but it seems that there is some underlying mechanism to detect bots.

I have looked into the documentation of humansecurity (https://edocs.humansecurity.com/docs/human-challenge#test-scenarios), but I couldn't find a solution.

It would be great if there was a way to bypass these non-mainstream captchas as well.

HUMAN security solutions are widely used, so having a bypasser for HUMAN security captchas would be a powerful addition to the plugin.

E-commerce: https://wayfair.com

[vladtreny]

We have solved it recently, but in the private community.
In short, need to rewrite a lot... or you need an anti-detect that solved it.
This lib will not help you.

[gabrielemidulla]

What do you mean for private community? Where can I download the bypasser?

[gabrielemidulla]

Yeah that works as well, but the captcha shows all the time! I don't even know which data is being used by the HUMAN challenge to detect whether im a bot or not...

[vladtreny]

They detect your cdp + bad IP

[gabrielemidulla]

is CDP Chrome DevTools Protocol?

[gabrielemidulla]

Sorry, what does CDP stands for? Either way, I also thought that rotating proxies could do the trick

[gabrielemidulla]

No problem, what does UA mean?

[vladtreny]

In summary, you need to solve cdp detection.

[gabrielemidulla]

In summary, you need to solve cdp detection.

Alright, could you tell me what does CDP stand for?

[Maxim-Mazurok]

is CDP Chrome DevTools Protocol?

Correct, see #899

[vladtreny]

It is not possible to fix it properly without modifying the Chromium source.

If anyone could start a project for a custom Chromium, would be great

[vladtreny]

@GiveDaData

I agree publishing makes no sense because these threads are monitored.

But anyway, cdp solution is not ideal. If you try to solve this ^ captcha, you will see issues. I bypass this captcha (by click), but yes, I saw limitations.

Ideal solution will be patching chromium and using puppeteer without any evasions at all.

Btw, if you want to reproduce the captcha, you can do following

await page.setUserAgent('HeadlessChrome')
await page.goto('https://www.wayfair.com/v/account/authentication/create')

[vladtreny]

I also bypass it. But I wanted to solve this captcha.

So had to set await page.setUserAgent('HeadlessChrome') to get the captcha intentionally. Then you can remove it, and you will see captcha on every load.

I solved it.. but yes, good job Human, if you read this 😅
Someone very smart made it.

[marcpre]

We have solved it recently, but in the private community. In short, need to rewrite a lot... or you need an anti-detect that solved it. This lib will not help you.

Which private community are you talking about? Would love to be part of it.