Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix Multi Shorteners #20803

Merged
merged 8 commits into from
Nov 21, 2023
Merged

Fix Multi Shorteners #20803

merged 8 commits into from
Nov 21, 2023

Conversation

BlazeFTL
Copy link
Contributor

https://lksfy.com/jlmfm0olam
https://go.birdurls.com/ntqy9qolam
vlshort.com/3k7hc9olam
https://cut.lc/w6c8qpolam
#20799

@JobcenterTycoon
Copy link
Contributor

For kiktu replace

techcyan.com,kiktu.com,upshrink.com,trangchu.news,banaraswap.in##a[href*=".click"]:style(opacity: 0.001 !important; pointer-events: none !important;)

with

techcyan.com,kiktu.com,upshrink.com,trangchu.news,banaraswap.in##a[href*=".click"]:style(visibility: hidden !important;)

This works for me.

@JobcenterTycoon JobcenterTycoon merged commit 2cceb5a into uBlockOrigin:master Nov 21, 2023
@BlazeFTL
Copy link
Contributor Author

It Would Be Cat And Mouse Game...This Site Owner More Active Than DG😂

@BlazeFTL BlazeFTL deleted the BlazeFTL-patch-1 branch November 21, 2023 17:01
@JobcenterTycoon
Copy link
Contributor

On the next update we can try spoof-css

@BlazeFTL
Copy link
Contributor Author

Spoof-css Is Very Weak...Easily Bypassed By Site Owners...
Both Spoof css & visibility was used by me and yuki bro earlier...so its a full rotation again

@JobcenterTycoon
Copy link
Contributor

JobcenterTycoon commented Nov 21, 2023
edited
Loading

How it can be bypassed? Bypasses should be reported to gorhill.

One problem is firefox because it throws a error into the console which seems to be changing the behavior which can be detected. gorhill didn’t fixed it yet (or its not fixable).

For hard cases MasterKia created a rpnt filter which can be used on other sites as well. Very hard to detect.

@BlazeFTL
Copy link
Contributor Author

Currently spoof-css only returns the value that we set but if it could return values directly from css then it might perform better...
##a[href*=".click"] Was Already Updated With Different Styles,Spoof But All Got Bypassed By Site Owner...I Dont Know What MasterKia's rpnt Filter Was Maybe You Can Try On This Site In Future..

Cause Here ##a[href*=".click"] = DropGalaxy's iframe Style Filters...I Had To Update Whenever Site Owner Updated

@JobcenterTycoon
Copy link
Contributor

MasterKia’s rpnt filter obtain the default real css and returning it to the site. With this MasterKia was able to bypass dragontea’s spoof-css detection. dragontea changed the style and then detect if the obtained getComputedStyle style also changed. This way to detect spoof-css is not uncommon.

See the full discussion: uBlockOrigin/uBlock-issues#2618

@BlazeFTL
Copy link
Contributor Author

BlazeFTL commented Nov 21, 2023
edited
Loading

@JobcenterTycoon Recheck...Site Owner Updated🤣
Now Switch To Spoof-css

@JobcenterTycoon
Copy link
Contributor

Done. Also blocked the linked badware domain and reported to different security vendors.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@BlazeFTL @JobcenterTycoon