I don't see a captcha bypass, all I see is a wget command with Cookie
and Session ID and such.
while true; do echo Yes, I am blind!; done
Am 2013-08-26 18:04, schrieb kevin philips:
Hi Adam,
As discussed, this issue just a captcha bypass problem. Except this case, I
don't know google
Hi Adam,
As discussed, this issue just a captcha bypass problem. Except this case, I
don't know google still uses this captcha somewhere or not :). Anyway,
thank you Adam! Your reply is a very clear way to explain it.
See more:
https://www.owasp.org/index.php/Testing_for_Captcha_(OWASP-AT-008)
folks,
I found CAPTCHA re-riding attack issue in
https://google.comhttps://webmail.vng.com.vn/owa/redir.aspx?C=MBNlh708PUqi0Yw_S1rA3DV_zLusddAIGU0MzN53skrHcqWc0vyF9vEfJjFxlgVRJcDYBVS8nws.URL=https%3a%2f%2fgoogle.com
.
PoC:
Loop request with correct captcha (in this case the value of captcha is
What exactly is a re-riding attack? Is that just another name for replay?
And does this only work in the sorry/continue context for google.com? If
so, I don't think it's really that big of a deal either. Repeated requests,
typically, are the cause of the sorry/continue page, so I can't see how
On Sun, Jan 1, 2012 at 3:43 PM, ebhakt ebh...@gmail.com wrote:
Hii guys,
Hii Ebhakt
I want to know the logic behind creating a captcha imagey
I know how the servers are designed and what the captcha security does!!
but how the captcha imagae is generated
that's my main question !!
The code
Awesome topic, i'm looking forward to hearing alot more about this.
There is Ted talking video explaining, but not into the security end of it.
http://blog.ted.com/2011/12/06/massive-scale-online-collaboration-luis-von-ahn-on-ted-com/
On Mon, Jan 2, 2012 at 10:56, Jan van Niekerk
Very carefully.
On Jan 1, 2012 1:52 PM, ebhakt ebh...@gmail.com wrote:
Hii guys,
g
Hii guys,
I want to know the logic behind creating a captcha image
I know how the servers are designed and what the captcha security does!!
but how the captcha imagae is generated that's my main question !!
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 01/01/2012 13:43, ebhakt wrote:
Hii guys,
I want to know the logic behind creating a captcha image
I know how the servers are designed and what the captcha security does!!
but how the captcha imagae is generated that's my main question !!
Hii guys,
I want to know the logic behind creating a captcha image
I know how the servers are designed and what the captcha security does!!
but how the captcha imagae is generated that's my main question !!
Any ideas , guesses !!
Just mail around !!
Thanks
