/idek

Primary LanguageJavaScriptGNU General Public License v3.0GPL-3.0

bxv.gg

All files associated with bxv.gg

Note

Since most people aren't going to read the license: If you use any of our code we expect credit to be given in a visual way, whever it is used. This can be in form of a simple text visible on the webpage (not console) saying something along the lines of "design by bxv" or "code by bxv". Not complying with these terms will be considered breaking the license

This was originally published at 11.01.2022 and re-opened to public eyes at 13.11.2022

Cookie challenge and captcha aren't open source anymore

What happened?

Today our cloudflare account got compromised and our websites got deleted. That gave us some time to think about whether or not we want to continue bxv. In the last couple of months, neither me, nor voltic really cared about bxv. I did some occasional updates to address some issues (like typos, lol) up to a month ago and then also stopped caring. The truth is, we got bored. We made bxv to see wether or not we could block ddos attacks without disturbing the user. Safe to say, whoever was here while bxv was alive, knows that's exactly what we accomplished. The source of our challenge itself became a cluster-fuck and incredible annoying to maintain. That's why we decided to "leak" it now. You can find the unobfuscated version over at https://bxv.gg/cookie. We will not tell you how to use it, however our internal ReadMe can be found over at https://bxv.gg/readme.md. This is so at least it will stop at least some skids from just copy pasting our challenge. If you do use our challenge or use parts of it, that were not open-source before (there are some parts of our challenge that are public knowlege, like checking for webdriver etc) it would be apprechiated if you give at least some credit to voltic, baloo or alexa, a person that operated behind the scenes. Our unobfuscated captcha can be found at https://bxv.gg/captcha and should be a lot easier to use.

Am i headless check

This no longer exists

I have updated bxv's cookie challenge to be a "am i headless" check. You can check whether or not your headless browser gets detected by the cookie challenge over at https://bxv.gg/headless. Keep in mind, this is only the cookie challenge, which only made up a tiny part of bxv.

Huge thanks to:

@V0ltic for getting me started with basic bot detection and testing aswell as the website design, @KillerCatLion for helping me create this awesome website, who's code is now unobfuscated and the console can be found at https://bxv.gg/assets/js/console.js and all of you, that helped me debug and patch your attacks (@udbnt, @That1G, @tcpurg, just to name a few). I couldn't have done it without you. Anyone that helped me in the past can dm me @ddosmitigation on telegram and i will help them how to use the bxv challenge."