mtcrackcha

mtcrackcha

beating up a stupid captcha service (mtcaptcha) that pisses me off

using up mtcrackcha

• install mtcrackcha using npm or bun or whatever the latest pacakge manager is
• create a new class

import MTCaptcha from 'mtcrackcha';

• grab the sitekey of the page you're solving:
  • open the page where you want to solve the captcha
  • open the console
  • type mtcaptchaConfig.sitekey and copy the output
• identify the host
  • the host is the URL beginning (can have subdomain) where you solved

if the website you are solving on has text input captchas, you'll need to pick up a Mistral API key over at mistral.ai - the key is free and gives you access to their pixtral model (pixtral-large-latest), which is currently the best vision model for solving mtcaptcha's challenges

• create a new instance of the class

// if there's text input:
const mtc = new MTCaptcha({
    siteKey: 'MTPublic-THISISAKEY',
    host: 'https://google.com',
    mistralKey: 'XXXXXXX'
});

// if there's no input (invisible):
const mtc = new MTCaptcha({
    siteKey: 'MTPublic-THISISAKEY',
    host: 'https://google.com',
    invisible: true
});

mtcatpcha punishes IPs that request lots of captchas with harder captchas that Mistral's vision models have more trouble solving. On runtimes that support the proxy option to fetch, you can set the PROXY environment variable to have all requests go through a proxy. Rotating proxies are not flagged by mtcaptcha.

• identify the page's "act"

  • open the browser console
  • reload the page
  • go to network and filter by getchallenge.json
  • click on it and look at the payload tab
  • copy the act value

• call the mtc.solve method:

const solution = await mtc.solve('the_act_goes_here');
if (solution.success) console.log('got mtcaptcha token', solution.token);
else console.log('whelp, time to try it again');

made with ❤️