Optimizing Cloudflare undetection #144
Conversation
|
Ping @twrecked |
|
Thanks for this. It looks pretty good. I'll just check it here and see exactly what it does. I'm always wary of changing the Cloudflare stuff because what fixes my stuff doesn't necessarily fix other people's. For example, I have 2 setups here that need different configuration to get passed the cloudflare login. |
|
Hi @twrecked, |
|
Thanks for this. I'm just checking now. I can't get the |
Yes, just for the noop. I am not sure that, precisely at this point, the OPTION call is needed or not but i've wanted to reproduce same calls my browser did. The 400 error code appears beacause of wrong user-agent has been sent (for him). Either we let as is for now, or we can try to get a 200 HTTP code returned. |
|
I merged it. We'll see how it goes... and I feel it's always good to line everything up as close as possible so maybe the extra NOOPs will help. |
|
Great, Thanks 👏 |
Hi,
I've made some optimization about Cloudflare bot detection. I've tried to be as human as possible during the auth authentication and I have managed requests with Cookies.
I saw during the reverse engineering, the challenge process about getFactors and getFactorId has been changed. So, I tried to get it.
Moreover, the "prime256v1" curve doesn't work anymore (on my side). So I define the the "secp384r1" as primary Curve.
I think this MR solve #120 and #121 (maybe more).
Let me know, and I wish this MR will be merged ;)
Regards.