Bypass Incapsula and Akamai
-
hi
is there anyway to bypass these in openbullet?
i saw a guy bypassed akamai with a script that connected to localhost in OB but im not sure he was rightso if there anyway
-
There is no builtin way to do that. It is possible with other tricks that I am not aware of.
-
@ruri How About Incapsula?
-
Hi, I don't think you understand how Incapsula works, let me explain
Let me tell you first to bypass incapsula, you will need to bypass recaptcha. Incapsula brings recaptcha into equation after a certain amount of requests.
If anyone were able to bypass recaptcha or you can pay for recaptcha, you then will continue to bypass Incapsula.Incapsula runs JavaScript code to see if you're using an automated browser, such as Selenium, phantomJS, mechanize etc... and they store a cookie right then and there and make a request with that cookie to send back a bunch of other cookies which all make it possible to access the website.. using those cookies you can now continue your session to the next request on that website.. if you request too fast or at odd intervals, incapsula will bring up another recaptcha... also your cookies expire very fast. You need to be undetectable... if you don't obey the recaptchas PLUS robots.txt and request responsibly you are going to fail.
Hope I helped.
-
@analyzer
so the header cookie will change every time
and recaptcha i cant find,even cant find recaptcha key in incapsula error page and and Bypass CF should Use?
-
bypass akamai is too hard to past it
-
I'm learning about this matter at the moment
@Ruri & everyone esle that can help, can we use these scripts or methods in OB to bypass this obstacle ?
https://github.com/vincentcox/bypass-firewalls-by-DNS-history
or
https://github.com/Imbuedhush/Incapsula-Bypass
https://github.com/ziplokk1/incapsula-cracker-py3
-
If you use the first tool you posted, it will give you an IP address that you can use in your requests with openbullet. So there's no need to integrate it inside openbullet, you can do it with that tool already.
For the other ones, they are open chrome tabs on my pc that I have yet to delve deep into ^^
-
Unfortunately I don't know how to implement it. It's not in my line of knowledge
But will work on it to find a way of doing it for sure
-
I heard that @Pure made a script to generate sensor data for akamai, @masterchief like @Ruri said you have to make your request to the IP=url (182.25.36.78=http://yourTarget.com) I guess
-
So its possible to create an host with akamai bypass to use ip=target site?
-
i made akamai config with out localhost method 1k cpm with just radom some values in sensor data but not work for long term i think
