Is it possible to create a CAPTCHA on your experience?

I think what @Accoast is saying is you can build an image, say 64x64 pixels, using 2x2 frames with unique background colors that are arranged in a 32x32 grid. You can create and manipulate custom images without uploading an id. This would require a bot has image recognition software built into it, but you could fight it using an adversarial noise augmentation approach where you black out small patches of the image, apply some kind of gradient overlay, etc.

Ah wait yea that is not a bad idea. You could get the image details from a web sever and then just create this as image via frames and due to this being from you own webserver this could be completely random images via some type of AI or API or somthing.

Sorry if this is what you where saying @Accoast , I may not have understood totally correctly what you where trying to say.

It will be lika a 100×100 pixels image. It will contain 10000 frames in total.
These frames will be colored to create an image.

They will. But it will be hard to trace them.
For example, imagine if we have image of a banana.

• We tilt it to random color. It will not be possible to recognize it by color in code.
• We distort the edges. The shape’s form will be distorted.
• We add random noise in image. Random colored pixels all over the image.

Even if it’s recognizable. We move the shape a bit to the left, and we can’t hard code check if the shape will be to the left or not, because the shape will be next time to the right. There is just infinite possibilities.

Tilting the image (or changing the blur on it or anything) would not effect anything though in regards to exploits as it would still be in the exact same order, this would of course eliminate the issue with AI recognizing it.

With what @kylerzong said would I think be even best because it is a completely random image (by theory) so should make it random every time.

Would fix the issue in regards to an AI figuring it out but a clever person could make it so that the position of the tiles are logged down meaning that if the bot where to inject some exploit code it could figure it out. Am I incorrect or what?

Could you explain how I am incorrect? I understand what a captcha is (a test to determine if it is a human or robot).

But we then come back to the whole point where the bot could just get the ID of the image or copy the string of the text?

there is no ID of the image it is randomly generated from your server and represented in pixels and it cant copy the text from the image because it is randomly placed with random lines across it / random distortions… the AI can’t do it but a human can

like this:

image1024×312 77.4 KB

the exploit can have all the pixels, and it still wont figure it out cause the characters are distorted, the computer ai is too bad to figure it out

but a human, can see that is just bendy and then they can input the correct answer of “smwm”

So your saying that the frames that create the base are in a completely random order as well so that no one can just see the order off it and copy that right? Cuz before it seemed like you where saying that only the stuff over the image (such as random lines) where random.

If so then yes this would make sense and a possible solution.

Also if so how could you do this? Cuz the image or text would have to be random and the layout of it so I don’t see a way of doing this in Roblox.

I’ve seen some very neat captcha concepts, one of the big ones was in a rogue lineage clone.
They used viewport frames with a unionpart of an item/enemy in the game and asked the player to select the name of the enemy.

Because they were unions with no identifiers, exploiters had a very hard time getting around the captcha and eventually just gave up.

Edit: I found the example game I remember playing while people were testing the captcha, you can click on the eagle statue to open the captcha.

Yes but how would you add the frames in the correct position? I understand what you mean but how could this be executed inside of Roblox?

Just use a UIGridLayout using Name Order. Store your images as a 2d table with each element being a color3. You can create the frames based on the size of the image and change their background color to each corresponding color in the table.

I agree as it is completely as random as possible. You know what your idea is really good and is the best solution I have seen.

Personally, I believe that making a CAPTCHA for an experience is possible but it would be difficult.

I’d prefer word CAPCTCHA’s and make the user to type in the answer of the word, the word itself would have to be readable for humans and not bots, perhaps as an example the CAPTCHA problem is spelling the word “hello” but slightly crossed out, so then the bot cannot screenshot the targeted word and find out the word by using image to word programs.

As a human, it’s obviously impossible for a human to acknowledge and answer in milliseconds, whereas if the bot exploited to get the answer somehow and submit it and then the bot would of bypassed the CAPTCHA nearly straight away, this could be monitored so if the CAPTCHA problem is submitted in only just milliseconds, the CAPTCHA problem would fail and put on the next attempt. However I do know there are work arounds that solution due to the bot program could be delayed.

Another solution could be to hide the answer of the CAPTCHA on a database instead of the Roblox experience, whenever the user inputs the answer, the experience would connect up to the database and find the right answer and then output if the CAPTCHA problem was submitted correctly or not.

These are just my ideas, if you have any feedback I’m more than happy to see it!

Yes, but it’s hard to add audio due to the limits, and for the math, People can use the calculator to get past the captha, like if the question is 10^10, then people will use the calculator to get past the question, and it’s very difficult to make a working calculator detector

All of them methods could easily be bypassed via a bot causing the CAPTCHA to be useless. Audio would just need the ID to be copied and then maths is quite easy for a bot to do.

Super easy on Roblox for a bot to bypass as I have spoken about in my post. All they need to do is get the text (and copy it) or if the text is an image then just get the ID off it. No need for the bot to use AI (or as you call it “image to word programs” when they can just get it automaticly.

Issue with this is again it can be bypassed. Sure humans cannot click that quickly but the user who made the bot can just make it wait a few seconds before doing the CAPTCHA.

That fixes none of the problems stated on the post. Adding it on a database is not better then having a table on the server side, the issue is not the way we are storing the CAPTCHA but rather the way the CAPTCHA is set up.

I think a very simple captcha would be very effective against and bot that isn’t specifically designed to hack your game specifically. I think you are reading too much into the threat. You aren’t designing banking software here.

I think a simple captcha where you count dots or items in an image or even just a simple text box and give the number would thwart any existing bot on Roblox.

Sure someone could write a bot that can figure out, but who is going to take the time to do this for your game?, realistically? (nobody)

I mean any CAPTCHA will be effective if the bot is not designed towards your game because it is not designed for your CAPTCHA system Also if let say your game where to get larger, someone may make a bot designed for your game.

Not really am I? All the things I have explained in this post is how the current systems people are trying to use will not work and I am asking if there is any real true way of doing it.

Bots on roblox in general at the moment are not desgined to bypass a game Captcha system so yes lol creating a simple Captcha would work fine but the issue occurs when a bot is attempting to bypass a Captcha.

Not at all true. Now my game no lol because at the current moment I have no large games but let say I where to have a large game, yes people would take time to code something to bypass it because you can get major amounts of people to for example join a website (if the bot is advertising a site as an example). Also not just my game but other larger games, people would figure out how to bypass it. Also with a simple Captcha they are very very easy to bypass so would someone take time to create one, yes possibly depending on someones motives.

Your point makes no sense at all. It is like saying that someone would not code a bot that can bypass for example the TikTok Captcha (or any site in general). If they want to use there bot on there site they will spend time to get pass the Captcha.

Also who ever said I plan to use this in my own game? It was jut a general question in regards to a Captcha system. I have seen many (if you read my post) current Captcha systems that are tbh pointless because they can be bypassed easily. I was thinking about possibly trying to make a better system just for the fun off it and if anyone wanted to use it.

i dont like the idea of audio cause not everyone likes to have volume on or just straight up doesnt have audio

The only solution that would really work is using an external server to generate a random string and putting it in an image, getting the image’s pixels and rendering it on roblox so that you can ask the player to write the same string of the image and finally compare the result with the correct answer.