#Proxied HTTP connection?

<@&987246527741304832> please have a look, thanks.

don't think we can help you because it looks like it can be used malicously

It could be used malicously yes but its literally a vuln I found on all captchas which exist out there. And I wanna know if it would be working as good with proxies thats it. Related to the results I might be reporting the vuln to cloudflare and google because its literally a computer clicking "Iam not a robot"

I don't understand the question btw, you want to run selenium through a proxy?

It loads up the web browser so there proxy would have to be in the browser itself

Yh like, HTTP proxies yk

The "I'm not a robot" check isn't detecting if a human/robot is clicking the button, that bit is the only a small bit of it

So the request is being made by proxies and not by a local machine

the actual "I'm not a bot" is handled by some other mechanism

I know but it still works

You can bypass it

if you run it on your local machine, yeah it will work

Yh and the actual question is, if it will work with proxies either

it'll stop asking for the captcha I think after the first pass anyway

But idk how to make the code for it

Nope

so all your other attempts won't even have a captcha I think (unless explict)

If its a CloudFlare UAM captcha it will not

And if the Cloudflare WAF is setup properly, every req will get a captcha

captcha

okay

anyways, on your question - it's handled in the browser

when selenium runs, it opens a web browser, right?

Yhhh

Uses chromebrowser

it has no control over what happens next - it just does "open browser" > "go to url" > wait for something to happen > "click div"

think of it as a glorified mouse recorder

as part of your script, I guess you could update the proxy settings in your browser?

Oh ok I see so it will not even get to clicking anything on a proxied request

yeah exactly

ok I see

wait no

?

if the request is proxied in google chrome

that does not matter to selenium

How do you do that

just checked

it uses the default OS proxy

so on windows, press start > network > proxy

Ok ok but uh specifying an array or file with proxies in and sending the traffic through them is not a option at all right

Because there is no browser basically

yeah if you wanna do it that way, you shouldn't use selenium

but instead use raw http requests

ok ye idk how to change the code to use actual HTTP requests cuz javas behaviour is very weird with that

Cuz I dont think you can specify Options then right

https://docs.oracle.com/en/java/javase/11/docs/api/java.net.http/java/net/http/HttpClient.html

I mean like this

so you create a HttpClient and open a connection to your url

yeah

the response will the html response right

now when you press a button/link or whatever normally, this would change the URL

in some cases like login, it'll prompt the capcha block but what you want to do then is send the http request that "i'm not a bot" does

it's a bit complicated though

yh i see

would you recommend using asyncho or syncho

whatever you feel comfortable with

ok

async probably

Can you even set a proxy with async then

yeah async/sync is just a way of execution

ah kk

proxy is a config

But i will still need selenium to execute the actual command to click the div right

when you click the div, what does it do?

does it send a request?

generate a code?

set a cookie?

uh nah it just clicks it basically

And cloudflare / google will validate the captcha bc of the options it sends

you could try the java web browser stuff

and hook that up with selenium

If you remove this option, it will become a captcha loop basically

ok but this helped already I guess I didnt know that theres such an easy module like HTTPClient for requests.

And you can use this one for Synchro also right? Like you can use every option for either HTTPClient and HTTPRequest

sorry not gonna help further because it's not a vuln