TypeRacer Racer (v3.4)

[IMPORTANT] This is a non-functional, educational tool to demonstrate the vulnerability of image-based CAPTCHAs. It is intentionally designed to FAIL the CAPTCHA and DOES NOT provide any gameplay advantage. Use for learning purposes only.

作者
ahmed emad
今日安裝
0
安裝總數
4
評價
0 0 0
版本
3.4
建立日期
2025-08-25
更新日期
2025-08-25
尺寸
15.8 KB
授權條款
MIT
腳本執行於

This project is a de-weaponized, educational tool designed to demonstrate a common web security vulnerability: the bypass of simple image-based CAPTCHAs using Optical Character Recognition (OCR). The bot is fully featured for racing on TypeRacer but is intentionally designed to fail the anti-cheat "Typing Challenge."

The goal is to provide a safe, hands-on learning experience for developers, students like me, without providing a tool that can be used for actual cheating.

The Vulnerability Explained: Image CAPTCHAs vs. OCR

Many systems rely on showing users an image of distorted text to prove they are human. The assumption is that computers cannot "read" text inside an image.

This assumption is no longer safe. Modern, open-source OCR libraries like Tesseract.js can be integrated directly into browser scripts. With minimal image pre-processing, these libraries can achieve high accuracy in converting image text back into character strings, allowing a bot to programmatically solve the challenge.

This project demonstrates this entire process, but stops short of submitting the correct answer, ensuring it remains an educational tool.

Demonstration

This video shows the bot in action: it performs a race at a configured speed, encounters the "Typing Challenge," and then visibly fails the check in a controlled manner.

⚠️ Ethical Disclaimer & Terms of Service

This project is for learning and responsible disclosure. Using automated tools to gain an unfair advantage on TypeRacer is strictly against their Terms of Service.

From the TypeRacer Terms of Service (Section 2. Cheating):

Dishonest competition between players will not be tolerated. You shall not:

  • cheat during gameplay or carry out any action to artificially enhance your typing speed or other statistics
  • use any third-party software to modify TypeRacer to change gameplay, including, but not limited to cheats and/or hacks;

This project and its author do not condone cheating. By using this code, you agree that you will not modify it to create a functional cheat and will only use it for educational purposes on your own accounts. Any consequences of violating TypeRacer's ToS are your own responsibility.

Features

  • WPM & Accuracy Control: Configure the bot's speed and precision to simulate different typing styles.
  • Human-like Behavior: Simulates mistakes and corrections, making its typing pattern more realistic.
  • Intelligent Pause/Resume: Stop the bot, type manually, and the bot can resume from where you left off.
  • Full UI Control: A clean, draggable UI to manage the bot's settings and state.
  • (Non-Functional) CAPTCHA Bypass: Demonstrates the full logic of detecting and reading the CAPTCHA, but intentionally fails to solve it.

Getting Started

Prerequisites

You need a userscript manager browser extension.

  • Tampermonkey (Recommended for Chrome, Firefox, Edge, Safari)

Installation

  1. Make sure you have one of the managers above installed.
  2. Intsall the script here

3. Once you installed it, open your userscript manager in the extensions (Browser extensions) and enable the script.

How to Use

  1. Navigate to https://play.typeracer.com/.
  2. Join a race. The bot's UI will appear in the bottom-right corner.
  3. Adjust the WPM and Accuracy sliders to your desired settings.
  4. Click "Start" to activate the bot. It will wait for the race to begin and then start typing.
  5. Click "Stop" at any time to pause the bot.
  6. Click "Clear" to instantly stop all actions and reset the bot for a new race.

License

This project is licensed under the MIT License. See the LICENSE file for details.