A Chrome Extension written as a proof of concept to bypass jQuery Real Person Captcha (tested with version 2.0.1).
The plugin is configured by default to run on the plugin developer's website. If it detects the jQuery Real Person Captcha it will attempt to parse the captcha content and fill in the captcha answer field with the captcha value.
Instead of using a browser extension, the relevant JavaScript code could be copied into a web page's source to achieve a similar effect.
To install the plugin, use the following steps:
- Save plugin folder to your desktop.
- In Chrome, click Menu > More Tools > Extensions.
- Click the "Load unpacked extension..." button.
- Select the saved plugin directory.
To test the plugin, you can navigate to the developer's homepage or basic captcha test page:
Note: The extension does not currently work for the fields on the "Options" tab of http://keith-wood.name/realPerson.html (see To do section).
The following items will enhance this exploit:
- Add functionality to work for different length captchas.
- Add functionality to parse for numbers.
- Add functionality to parse for other types of dots.
- Add different browser extension/plugin versions.