secret-agent icon indicating copy to clipboard operation
secret-agent copied to clipboard

Published 20 hours ago verified publisher icon ulixee

Doxbin is detecting SA 1.5.9

Open ctaity opened this issue 3 years ago • 10 comments

HI, doxbin.org is still detecting SA.

Screen Shot 2021-09-08 at 19 05 58

ctaity avatar Sep 08 '21 22:09 ctaity

I didn’t get that message. Are you sure it’s not actually because of an extension you have installed? Doxbin just spun for me, but no error.

On Sep 8, 2021, at 6:06 PM, ctaity @.***> wrote:

 HI, doxbin.org is still detecting SA.

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub, or unsubscribe.

blakebyrnes avatar Sep 08 '21 22:09 blakebyrnes

that screen is from SA BROWSER: SA_SHOW_BROWSER =true

ctaity avatar Sep 08 '21 22:09 ctaity

Can you send me a session db? Maybe I can find something in it

On Sep 8, 2021, at 6:28 PM, ctaity @.***> wrote:

 that screen is from SA BROWSER: SA_SHOW_BROWSER =true

— You are receiving this because you commented. Reply to this email directly, view it on GitHub, or unsubscribe.

blakebyrnes avatar Sep 08 '21 23:09 blakebyrnes

What does this site do in regular chrome? I can’t get it to do anything in any browser I’ve tried besides bounce the logo

On Sep 8, 2021, at 7:28 PM, Blake Byrnes @.***> wrote:

 Can you send me a session db? Maybe I can find something in it

On Sep 8, 2021, at 6:28 PM, ctaity @.***> wrote:

 that screen is from SA BROWSER: SA_SHOW_BROWSER =true

— You are receiving this because you commented. Reply to this email directly, view it on GitHub, or unsubscribe.

blakebyrnes avatar Sep 08 '21 23:09 blakebyrnes

on a regular browser, pass the checks and go to the site, but only I can access the site from USA VPN. From my location (Argentina) never pass the challenge.

Screen Shot 2021-09-08 at 20 50 06

video from Argentina: https://www.loom.com/share/abff241a634f402ca767a8ebc8811feb

video from USA: https://loom.com/share/3238ebe8028f4a90abc3e97bb11cda17

ctaity avatar Sep 08 '21 23:09 ctaity

I need more to go on than just urls. Please either provide session databases (private is fine) or way more details. I’m not sure I follow how a 522 error on voat.co is related to doxbin.

On Sep 8, 2021, at 9:02 PM, ctaity @.***> wrote:  and CloudFlare is still detecting SA:

https://www.loom.com/share/b4e64a724d1e4ca098d46a824c4842a4

— You are receiving this because you commented. Reply to this email directly, view it on GitHub, or unsubscribe.

blakebyrnes avatar Sep 09 '21 02:09 blakebyrnes

no voat.co was an error, please excuse me. Tomorrow i will send the session database. Thanks for all

ctaity avatar Sep 09 '21 02:09 ctaity

@blakebyrnes is ok the SA DB I sent you?

ctaity avatar Sep 14 '21 12:09 ctaity

Yep, thanks! I poked through, but I don't see anything obvious. It looks like their bot blocker is seeing something it doesn't like, but it's not showing up in the logs in any way I can see. Do you know if any other tools are making it through on this site?

blakebyrnes avatar Sep 14 '21 12:09 blakebyrnes

No, I am tried with selenium, puppeteer with stealth plugin, and normal requests but not lucky, and with SecreatAgent :(

ctaity avatar Sep 14 '21 12:09 ctaity