recaptcha

Notice: Before sending recaptcha v2 task, you should transfer credits to recaptcha v2 type for consuming in guest system login in with your key.

ReCaptcha V2

ReCaptcha V2 is know as I'am not a robot. It contains two types, one is the checkbox and the other is invisible.

How to bypass

Checkbox

Open the html source code of the target website.

Find out script url such as


<script src="https://www.google.com/recaptcha/api.js?render=6Ld72eAUAAAAALYxG5dMa8-oBMB_OrMSIaGRHGCU"></script>

or html block


xxxxxxxxxx
<div class="g-recaptcha" data-sitekey="6LccJLkUAAAAALTq5V7vrSQ9PUD0Mi848PjiiwzH" ></div>

The google recaptcha key of the website is the render parameter or data-sitekey. Copy it. And send a Post http request with the value copies as parameter siteKey and full page URL as parameter pageUrl to our server api:
```
xxxxxxxxxx
https://guest-api.bypasscaptcha.com/recaptcha/post
```
. You can find the full list of parameters in the API List below.
If the request is accepted fine, the server will return JSON {success: true, data: 12345} in which data is the id for the task you submit.

Wait for 10-15 seconds to send a HTTP GET request to API


xxxxxxxxxx
 https://api-guest.bypasscaptcha.com/recaptcha/task/status

providing the task ID. If task is solved the api will return the result in JSON. The result is a token like this:


xxxxxxxxxx
03AGdBq26JcMF-JBu98g8DjCWf7oRfPSNFJAMD8jbK0d867NJQZ81JLeihZtsEAQ5LJZgat0retM-Zv6pyaS4R_IgrkHaMF8zgZ294lYLX8k5X-uc-FnenuCZgqMuBcE_dkLo5OUuyVR2cwi2EHup4dkBXvbcW2iEroU_CyE7Imi6sNZfsvwj0PYMyL3T1n4ALzdQxX5I5gBk7SrfVwhhVkZHyw9FyjDYRZuIAaAnePH01SrGX20p9aGpAQ7tRfCg8ZtSW19ttGt1Gk2tInD38iRzhHUo1rdB2vxUr4HgilbAUir-9uU3Dhhve9dfSS9xEOOS5gd1xZNZdNjhVZzTBYp81t0fm3z_NFPg_UuRC7zs19iNQWNkz6BKvOXKR9n5dWsrmvTS_MquYLK0YO7dFKhORCv5RGawO0a0QoY0Sazokg_7OxDFMTYEtNrjHqTiEzkgwFJA70txXVPAnRshK8sJcETsrASixCA

If the captcha is not solved yet the api will return finish=false in return JSON. Just repeat your request in 5-10 seconds.

Find out the element with id g-recaptcha-response in target web page, or token is return in a callback function defined in data-callback parameter of reCaptcha, for example:


xxxxxxxxxx
data-callback="tokenCallback"

Sometimes the callback function is defined as callback parameter of grecaptcha.render function, for example:


xxxxxxxxxx
grecaptcha.render('bypasscaptcha', {
  'sitekey' : 'googleSiteKey',
  'callback' : tokenCallback,
  'theme' : 'dark'
});

You should find out how the target website use the token, and post the request with token returned by us.

Congratulation! You will success to bypass. If you succeed to bypass, you can submit the result with 1 to us through the api


xxxxxxxxxx
https://guest-api.bypasscaptcha.com/recaptcha/task/submit_result

If the token is valid cause you fail to bypass, please submit the result with 0 to us.

Invisable

Invisible ReCaptcha is always located on a DIV layer positioned -10 000 px from top that makes it invisible for user.

ReCaptcha is activated on page load or on user's actions like click buttons or submit a form. If visitor's cookies are good enough then it will just pass automatically and no additional actions will be required. Otherwise user will see standard ReCaptcha.In most cases token is returned to a callback function.

Bypass steps are almost the same with checkbox one, the only difference is how you use the token.

API Return Value

Return value is JSON, including：

Fields	Type	Description
success	boolean	True is success, false means failed
data	any	Return data
message	string	Error description contained when success is false
code	string	Error code contained when success is false

Error Code List

Value	Description
bypass.error.guest_key_not_exist	Key is invalid
bypass.error.guest_disabled	Key is disabled
bypass.error.guest.credit_not_enough	No enough credit
bypass.error.task.invalid	Task id is invalid

API List

1. Post recaptcha task


xxxxxxxxxx
POST https://guest-api.bypasscaptcha.com/recaptcha/post

Parameter	Type	Required	Description
key	string	Yes	The key you use to access bypasscaptcha apis
siteKey	string	Yes	The google recaptcha key of target website
pageUrl	string	Yes	Full URL of the page where you want to bypass the ReCaptcha
version	string	Yes	V2
invisible	number	No	If you use invisible recaptcha V2, please pass invisible = 1
vendorKey	string	No	Vendor key can be used in your software if your are a software vendor.

Return Value:

Fields	Type	Description
data	object	Task Id

Example:


xxxxxxxxxx
{
  "success": true,
  "data": 1
}

2. Check task status


xxxxxxxxxx
GET https://guest-api.bypasscaptcha.com/recaptcha/task/status

Parameter	Type	Required	Description
key	string	Yes	The key you use to access bypasscaptcha apis
taskIds	string	Yes	Task ids join with ',' to be a string such as 1,2,3

Return Value:

Fields	Type	Description
data	Array	Task status list

Task Status Object:

Fields	Type	Description
finish	boolean	Is task over
value	string	Google token
taskId	number	If task isn't over, taskId is 0
finishTime	number	Unix timestamp displayed as seconds. If task isn't over, finishTime is 0

Example:


xxxxxxxxxx
{
  "success": true,
  "data": [{
    taskId: 1,
    finish: true,
    value: '03AGdBq26JcMF-JBu98g8DjCWf7oRfPSNFJAMD8jbK0d867NJQZ81JLeihZtsEAQ5LJZgat0retM-Zv6pyaS4R_IgrkHaMF8zgZ294lYLX8k5X-uc-FnenuCZgqMuBcE_dkLo5OUuyVR2cwi2EHup4dkBXvbcW2iEroU_CyE7Imi6sNZfsvwj0PYMyL3T1n4ALzdQxX5I5gBk7SrfVwhhVkZHyw9FyjDYRZuIAaAnePH01SrGX20p9aGpAQ7tRfCg8ZtSW19ttGt1Gk2tInD38iRzhHUo1rdB2vxUr4HgilbAUir-9uU3Dhhve9dfSS9xEOOS5gd1xZNZdNjhVZzTBYp81t0fm3z_NFPg_UuRC7zs19iNQWNkz6BKvOXKR9n5dWsrmvTS_MquYLK0YO7dFKhORCv5RGawO0a0QoY0Sazokg_7OxDFMTYEtNrjHqTiEzkgwFJA70txXVPAnRshK8sJcETsrASixCA',
    finishTime: 1591095737
  }]
}

3. Submit task result


xxxxxxxxxx
POST https://guest-api.bypasscaptcha.com/recaptcha/task/submit_result

Parameter	Type	Required	Description
key	string	Yes	The key you use to access bypasscaptcha apis
taskId	number	Yes	The task you want to report result
result	number	Yes	1 means success, 0 means failure

Return Value:

Fields	Type	Description
data	boolean	true