Skip to main content

Overview

Bypass blocks help circumvent anti-bot protection systems:
  • CaptchaSolver: Solve reCAPTCHA, hCaptcha via third-party services
  • CloudflareBypass: Bypass Cloudflare challenges
  • OcrCaptcha: OCR-based image captcha solving
  • RecaptchaInvisible: Handle invisible reCAPTCHA
  • DataDomeSensor: Generate DataDome sensor data
  • AkamaiV3Sensor: Encrypt/decrypt Akamai V3 sensor payloads
  • XacfSensor: Generate XACF sensor data

CaptchaSolver

Solve captchas using third-party solving services.

Settings

solver_service
string
default:"capsolver"
Captcha solving service to useSupported services: capsolver, 2captcha, anticaptcha
api_key
string
required
API key for the solving service
site_key
string
required
Site key (data-sitekey) from the target website
page_url
string
required
URL of the page with the captcha
captcha_type
string
default:"RecaptchaV2"
Type of captcha:
  • RecaptchaV2
  • RecaptchaV3
  • hCaptcha
  • FunCaptcha
  • ImageCaptcha
output_var
string
default:"CAPTCHA_TOKEN"
Variable name to store solved token
timeout_ms
number
default:"120000"
Maximum time to wait for solution (2 minutes default)
capture
boolean
default:"false"
Capture as user-visible variable

Example

{
  "block_type": "CaptchaSolver",
  "label": "Solve reCAPTCHA",
  "settings": {
    "type": "CaptchaSolver",
    "solver_service": "capsolver",
    "api_key": "<globals.CAPSOLVER_KEY>",
    "site_key": "6LdRcpYUAAAAAJBhD0TZ1bN8Qw8K",
    "page_url": "https://example.com/login",
    "captcha_type": "RecaptchaV2",
    "output_var": "RECAPTCHA_TOKEN",
    "capture": true
  }
}

CloudflareBypass

Bypass Cloudflare challenges using FlareSolverr.

Settings

url
string
required
Target URL protected by Cloudflare
flaresolverr_url
string
default:"http://localhost:8191/v1"
FlareSolverr API endpoint
max_timeout_ms
number
default:"60000"
Maximum time to wait for challenge solution
output_var
string
default:"CF_COOKIES"
Variable name to store Cloudflare cookies
capture
boolean
default:"false"
Capture as user-visible variable

Example

{
  "block_type": "CloudflareBypass",
  "label": "Bypass Cloudflare",
  "settings": {
    "type": "CloudflareBypass",
    "url": "https://protected-site.com",
    "flaresolverr_url": "http://localhost:8191/v1",
    "max_timeout_ms": 60000,
    "output_var": "CF_COOKIES"
  }
}

OcrCaptcha

Solve image captchas using OCR (Tesseract).

Settings

input_var
string
default:"SCREENSHOT_B64"
Variable containing base64-encoded captcha image
language
string
default:"eng"
OCR language code (e.g., eng, spa, fra)
psm
number
default:"7"
Tesseract page segmentation mode (0-13)Common values:
  • 6 - Assume single uniform block of text
  • 7 - Treat image as single text line
  • 8 - Treat image as single word
whitelist
string
Character whitelist (only recognize these characters)Example: 0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZ
output_var
string
default:"OCR_TEXT"
Variable name to store recognized text
capture
boolean
default:"false"
Capture as user-visible variable

Example

{
  "block_type": "OcrCaptcha",
  "label": "Read Captcha",
  "settings": {
    "type": "OcrCaptcha",
    "input_var": "data.CAPTCHA_IMAGE_B64",
    "language": "eng",
    "psm": 7,
    "whitelist": "ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789",
    "output_var": "CAPTCHA_TEXT",
    "capture": true
  }
}

RecaptchaInvisible

Generate invisible reCAPTCHA tokens.

Settings

ar
string
ar parameter value
sitekey
string
required
reCAPTCHA site key
co
string
co parameter (origin domain)
hi
string
hi parameter
v
string
reCAPTCHA version
size
string
default:"invisible"
Challenge size (usually “invisible”)
action
string
reCAPTCHA v3 action name
cb
string
Callback parameter
anchor_url
string
Anchor iframe URL
reload_url
string
Reload iframe URL
user_agent
string
default:"Mozilla/5.0..."
User-Agent to use
output_var
string
default:"RECAPTCHA_TOKEN"
Variable name to store token
capture
boolean
default:"false"
Capture as user-visible variable

DataDomeSensor

Generate DataDome sensor data.

Settings

site_url
string
required
Target site URL
cookie_datadome
string
required
DataDome cookie value
user_agent
string
default:"Mozilla/5.0..."
User-Agent string
custom_wasm_b64
string
Custom WASM module (base64-encoded)
output_var
string
default:"DD_SENSOR"
Variable name to store sensor data
capture
boolean
default:"false"
Capture as user-visible variable

Example

{
  "block_type": "DataDomeSensor",
  "label": "Generate Sensor",
  "settings": {
    "type": "DataDomeSensor",
    "site_url": "https://protected-site.com",
    "cookie_datadome": "<data.DD_COOKIE>",
    "user_agent": "<data.USER_AGENT>",
    "output_var": "DD_SENSOR"
  }
}

AkamaiV3Sensor

Encrypt or decrypt Akamai V3 sensor payloads.

Settings

mode
AkamaiV3Mode
required
Operation mode:
  • Encrypt - Encrypt payload to sensor data
  • Decrypt - Decrypt sensor data to payload
  • ExtractCookieHash - Extract hash from cookie
payload_var
string
default:"SENSOR_PAYLOAD"
Variable containing payload data
file_hash
string
Akamai file hash
cookie_hash
string
default:"8888888"
Cookie hash value
output_var
string
default:"AKAMAI_SENSOR"
Variable name to store result
capture
boolean
default:"false"
Capture as user-visible variable

Example

{
  "block_type": "AkamaiV3Sensor",
  "label": "Encrypt Sensor",
  "settings": {
    "type": "AkamaiV3Sensor",
    "mode": "Encrypt",
    "payload_var": "data.SENSOR_PAYLOAD",
    "file_hash": "<data.AKAMAI_HASH>",
    "cookie_hash": "8888888",
    "output_var": "AKAMAI_SENSOR"
  }
}

XacfSensor

Generate XACF sensor data.

Settings

bundle_id
string
required
Application bundle ID
version
string
default:"2.1.2"
XACF version
output_var
string
default:"XACF_SENSOR"
Variable name to store sensor data
capture
boolean
default:"false"
Capture as user-visible variable

Example

{
  "block_type": "XacfSensor",
  "label": "Generate XACF",
  "settings": {
    "type": "XacfSensor",
    "bundle_id": "com.example.app",
    "version": "2.1.2",
    "output_var": "XACF_SENSOR"
  }
}

Best Practices

  1. Use captcha solvers sparingly - They cost money per solve
  2. Cache bypass tokens when possible to avoid repeated solves
  3. Set appropriate timeouts - Captcha solving can take 10-60 seconds
  4. Rotate API keys if you hit rate limits
  5. Test bypass methods on staging/test environments first
  6. Keep sensor data fresh - Many sensors have short validity periods