McChallenge

🍌This page is >Quotey Contents of this page may be >quoted. Consider bringing an arrow!

This page, ironically, is a gem.

>You need to wait on the 56 colored sand grains to prove you're not a Big Mac or whatever

McChallenge is an easy captcha that pops up when you first go on the sharty every minute on any sharty-affiliated sites. It uses a hCaptcha ReCAPTCHA Geetest McCaptcha proof of work captcha system and made no-JavaScript bros fully unable to use the bald man glasses website anymore. It was initially made by Ronald who is a glownigger, has no personality and is also a Reddit mod who transhearts locking threads when he's seething.

Nowadays though, the Sharty uses an automated proof of work captcha implemented by Quote that is much easier and less time-consuming.^[a]

Variants[edit | edit source]

The McChallenge has an alternate function as a mirror page for when a domain is inaccessible. It will display soyjak.st as the alternate domain. It initially featured soyjaks.party as well, until that domain was relinquished by Froot's administration and acquired by the Shemmy.

On the Schlog, the McChallenge features a PoW (Proof of Work) Captcha, similar to the late Shiny. This has been true since late November.

History[edit | edit source]

In late June, 2024, McChallenge prompts greatly increased in frequency, forcing users to fill it in several times every hour, which is a problem if you're typing something and you have to do the captcha, forcing you to retype it completely because it doesn't save your text before the interruption, making it the scourge of 'ki editors^[b]. Undoubtedly, this is party-killing coal.

Soyteens have gotten this message "Account Banned, Service Suspended" from this annoying captcha because frogniggers reported the website to hCaptcha.^[1] So instead of making a new account it got replaced by ReCAPTCHA, a way worse captcha brimstone piece of shit that datamines your info even more and sends it to google. It especially hates tor, VPNs and 'teens solving it too quickly, taking great pride in wasting everyone's time.

Captcha was once again replaced with a new one called Geetest CAPTCHA, it forces you to solve a puzzle, this is supposed to be representative and valid and supporting to autistic folx.

On August 30th, McCaptcha was added to McChallenge, creating a captcha-ception.

As of late-November, McChallenge features a PoW captcha on the Shlog (now appears on most Sharty websites).

THERE IS A CHANCE THAT YOU MIGHT BE LOGGED-OUT FROM THE 'RU AFTER COMPLETING THE CAPTCHA

How a proof-of-work CAPTCHA works[edit | edit source]

	This is actually... helpful? You can read this for more info about the topic

A proof-of-work CAPTCHA (PoW CAPTCHA) works by essentially computing a partial hash collision. To do this, it must find some input (a challenge plus a nonce) such that its hash satisfies some property, such as the first ${\displaystyle k}$ bits being 0. This is intentionally computationally difficult or expensive for the client, but very mathematically easy to verify for the server (it just checks for the first few bits of the hashes to be identical). A partial hash collision refers to two objects producing the same hash up to the first ${\displaystyle k}$ bits.

The main benefits of this is that it significantly slows down bots by scaling computation time, making abuse by bots much more costly. This is good for mitigating DDoS attacks. Furthermore, it requires almost no user interaction and avoids the interactions needed by a traditional CAPTCHA system.

However, on smaller devices like smartphones or those with less power, it is more difficult. It also causes delays for users with slower devices. It does not guarantee blocking/preventing bot abuse, only slows it down.

It is best to use a programming language that can compile to WebAssembly (WASM) and is fast, such as C++ or Rust, for implementing a proof-of-work CAPTCHA.

Floyd's cycle detection algorithm[edit | edit source]

By utilising the birthday paradox attack using Floyd's cycle detection algorithm, this significantly increases the speed at finding a partial hash collision. The algorithm is as follows:

1. Start with some initial value ${\displaystyle x_0}$
2. Define two iterators:
   1. The tortoise advances by one step: ${\displaystyle x_{i+1}=f(x_i)}$
   2. The hare advances by two steps: ${\displaystyle y_{i+1}=f(f(y_i))}$
3. Continue this process until ${\displaystyle x=y}$, indicating a cycle (repeat in truncated hashes), or the tortoise and hare meet
4. Re-run from the start to find the pair ${\displaystyle (x,y)}$ (with ${\displaystyle x\ne y}$) satisfying ${\displaystyle f(x)=f(y)}$

Example implementation[edit | edit source]

An example implementation of a proof of work CAPTCHA could look like this, using the Java programming language:

package party.soyjak.tools;

import java.security.MessageDigest;
import java.security.NoSuchAlgorithmException;
import java.util.Random;

/**
 * A simple Proof-of-Work CAPTCHA system.
 * 
 * The server generates a challenge (a random nonce), and the client must find
 * a number (proof) such that the SHA-256 hash of (challenge + proof) starts
 * with a specific number of leading zeros, as defined by the difficulty.
 */
public class ProofOfWorkCaptcha {
    Random rand = new Random();

    /** 
     * Number of leading zeros required in the hash (difficulty) 
     */
    private static final int DIFFICULTY = 4;

    /**
     * Generates a random hexadecimal nonce to serve as the proof-of-work challenge.
     *
     * @return a random challenge string (nonce)
     */
    public static String generateChallenge() {
        return Long.toHexString(rand.nextLong());
    }

    /**
     * Solves the given proof-of-work challenge by finding a numeric proof such that
     * the SHA-256 hash of (challenge + proof) starts with a number of zeros equal to the difficulty.
     *
     * @param challenge The challenge string (nonce) from the server
     * @param difficulty The number of leading zeros required in the hash
     * @return the numeric proof that solves the challenge
     * @throws NoSuchAlgorithmException if SHA-256 algorithm is not available
     */
    public static long solveChallenge(String challenge, int difficulty) throws NoSuchAlgorithmException {
        long proof = 0;
        String hash;

        do {
            String input = challenge + proof;
            hash = sha256(input);
            proof++;
        } while (!hash.startsWith(getLeadingZeros(difficulty)));

        // Adjust because proof is incremented after match
        return proof - 1;
    }

    /**
     * Verifies whether the provided proof satisfies the challenge and difficulty criteria.
     *
     * @param challenge The original challenge string
     * @param proof The proof to verify
     * @param difficulty The number of leading zeros required
     * @return true if the proof is valid, false otherwise
     * @throws NoSuchAlgorithmException if SHA-256 algorithm is not available
     */
    public static boolean verifyProof(String challenge, long proof, int difficulty) throws NoSuchAlgorithmException {
        String hash = sha256(challenge + proof);
        return hash.startsWith(getLeadingZeros(difficulty));
    }

    /**
     * Computes the SHA-256 hash of the given string and returns the result as a hexadecimal string.
     *
     * @param base The input string
     * @return the SHA-256 hash in hexadecimal format
     * @throws NoSuchAlgorithmException if SHA-256 is not available
     */
    public static String sha256(String base) throws NoSuchAlgorithmException {
        MessageDigest digest = MessageDigest.getInstance("SHA-256");
        byte[] hashBytes = digest.digest(base.getBytes());
        StringBuilder hexString = new StringBuilder();

        for (byte b : hashBytes) {
            String hex = Integer.toHexString(0xff & b);
            if (hex.length() == 1) {
                hexString.append('0');
            }
            hexString.append(hex);
        }

        return hexString.toString();
    }

    /**
     * Creates a string of zeros equal to the specified difficulty level.
     *
     * @param difficulty the number of leading zeros required
     * @return a string consisting of 'difficulty' number of zeros
     */
    private static String getLeadingZeros(int difficulty) {
        return "0".repeat(Math.max(0, difficulty));
    }

    /**
     * Entry point for testing the Proof-of-Work CAPTCHA.
     *
     * @param args command-line arguments (not used)
     * @throws NoSuchAlgorithmException if SHA-256 is not available
     */
    public static void main(String[] args) throws NoSuchAlgorithmException {
        String challenge = generateChallenge();
        System.out.printf("Challenge (nonce): %s%n", challenge);
        System.out.printf("Difficulty: %d%n", DIFFICULTY);

        long proof = solveChallenge(challenge, DIFFICULTY);
        System.out.printf("Client found proof: %d%n", proof);

        boolean valid = verifyProof(challenge, proof, DIFFICULTY);
        System.out.printf("Proof is valid: %b%n", valid);
    }
}

Gallery[edit | edit source]

• 
• 
  Don't Believe me? Well check your Cookie, Your IP will be stored in "_____mcchallenge" after you get verified.

See also[edit | edit source]

• McCaptcha
• McChallenge

Notes

Citations

McChallenge is part of a series on Soyience™ Visit the Soyence portal for more.
	"We are all just hecking star dust or something!"	Peer reviewed sources [-+] Klaus Schwab ♦ Snopes ♦ Adam Conover ♦ XKCD ♦ Wikipedia ♦ /sci/ ♦ Dr. Fauci ♦ Dr. Soyberg ♦ Reddit ♦ Peer-reviewed study ♦ Just trust the science itself okay??! ♦ The Experts
	Fields of science [-+] Archeology ♦ Biology ♦ Virology ♦ Nutritionial science ♦ Mathematics ♦ Sociology ♦ Psychology ♦ Technology ♦ Philosophy ♦ Zoology ♦ Ajakogenesis ♦ Robotics
	Science in praxis [-+] Fourth Industrial Revolution ♦ Communism ♦ Meds ♦ Atheism ♦ Abortion ♦ Pod ♦ Bugs ♦ Quarantine
	Theoretical branches [-+] Time Travel ♦ Soyrooms ♦ Poop 2 ♦ Hypothetical soyjaks ♦ Coal 3

McChallenge is part of a series on the coal that is killing /soy/	Sources [-+] 4cuck ♦ 9a0c ♦ Admin 6 ♦ Avatarfags ♦ /bp/ ♦ Discord ♦ DynaDot, Porkbun, Epik and NameCheap ♦ Failtrolls ♦ FNF pedo ♦ The Froot Cabal ♦ Furries ♦ Indonesia ♦ jakparty.soy (Jassy) ♦ Jannies ♦ Jews ♦ Kernüng ♦ /nate/ ♦ Nightly raids ♦ Nulees ♦ Nusoicucks ♦ Poopson ♦ Purity spiral ♦ Reddit ♦ /r9k/ ♦ SoyBooru ♦ soyjak.blog (NuSchlog • Shroom) ♦ Three-Letter Agencies ♦ TikTok ♦ Tranime ♦ Trannies ♦ 𝕏 ♦ You[You just are, ok?]
	Symptoms [-+] Autism ♦ Baby bot ♦ Baby monkey torture ♦ Blogposting ♦ Coalposting (Dust ♦ Brimstone ♦ Vantablack ♦ Antimatter) ♦ Countrywars ♦ Demoralization ♦ Derailing ♦ Drama ♦ Froot derangement syndrome ♦ Gooning ♦ 'Jakking Fatigue ♦ Märgerautismus Syndrome ♦ NAS ♦ Pedophilia and 'p spam ♦ Politicoaling ♦ Porn ♦ Quotesink ♦ Sharty derangement syndrome ♦ Shit Nobody Cares About ♦ Slopjakking ♦ Snitches ♦ Useless Nigger Wars ♦ variant:unknown
	Forced Memes [-+] Brojak ♦ Brown Troonjaks ♦ Catjak ♦ Chudjak self-inserting ♦ Cobbess ♦ Dogjak ♦ Enbie (Pink-Haired Enbie) ♦ Euromutt ♦ Flagging ♦ Flartson ♦ Kamala Harris ♦ Mexiwhore ♦ Neutralplier ♦ "Newfag Repellant" ♦ Petra ♦ Soylita (Shoyta) ♦ Spadeson and racebait ♦ Troonslop (The Amazing Digital Circus ♦ Battle for Dream Island ♦ Boykisser ♦ The Coffin of Andy and Leyley ♦ Fundamental Paper Education ♦ Ongezellig (detractor perspective)
	Treatment [-+] Admin Ϫ ♦ Bumping gemmy threads ♦ /calm/ ♦ Countering spam/derailing ♦ Gemposting (Gemeralds ♦ The gem that saved the Party ♦ Supernova) ♦ Goonocaust ♦ Great Purge ♦ IAS ♦ Jesus ♦ Learning about the past ♦ Meds NOW ♦ Namefag Purge ♦ Saging coaly threads ♦ Sproke ♦ and most importantly... Original Content