From d7dd7c890fe7433d451a3a560e03088a2d200c39 Mon Sep 17 00:00:00 2001
From: Bogdan Finn <bogdan.finn@googlemail.com>
Date: Sun, 8 Jan 2023 19:56:05 +0100
Subject: [PATCH] draft: implemented hawk aio cf api;

---
 antibot.go                 |   9 +
 client.go                  |  32 +++-
 client_options.go          |   9 +
 example/main.go            |  24 ++-
 go.mod                     |   3 +
 go.sum                     |   9 +
 hawk/captcha_solver.go     | 204 ++++++++++++++++++++++
 hawk/cf.go                 | 148 ++++++++++++++++
 hawk/challenge_solver.go   | 338 +++++++++++++++++++++++++++++++++++++
 hawk/fingerprint_solver.go | 146 ++++++++++++++++
 hawk/headers.go            |  53 ++++++
 hawk/notes.txt             |   1 +
 hawk/solver_factory.go     | 155 +++++++++++++++++
 hawk/types.go              |  76 +++++++++
 hawk/utils.go              | 213 +++++++++++++++++++++++
 profiles.txt               | 335 ++++++++++++++++++++++++++++++++++++
 16 files changed, 1734 insertions(+), 21 deletions(-)
 create mode 100644 antibot.go
 create mode 100644 hawk/captcha_solver.go
 create mode 100644 hawk/cf.go
 create mode 100644 hawk/challenge_solver.go
 create mode 100644 hawk/fingerprint_solver.go
 create mode 100644 hawk/headers.go
 create mode 100644 hawk/notes.txt
 create mode 100644 hawk/solver_factory.go
 create mode 100644 hawk/types.go
 create mode 100644 hawk/utils.go
 create mode 100644 profiles.txt

diff --git a/antibot.go b/antibot.go
new file mode 100644
index 0000000..73b508b
--- /dev/null
+++ b/antibot.go
@@ -0,0 +1,9 @@
+package tls_client
+
+import (
+	http "github.com/bogdanfinn/fhttp"
+)
+
+type CFSolvingHandler interface {
+	Solve(logger Logger, client HttpClient, response *http.Response) (*http.Response, error)
+}
diff --git a/client.go b/client.go
index db0eb0c..3d9d063 100644
--- a/client.go
+++ b/client.go
@@ -40,9 +40,10 @@ var _ HttpClient = (*httpClient)(nil)
 
 type httpClient struct {
 	http.Client
-	headerLck sync.Mutex
-	logger    Logger
-	config    *httpClientConfig
+	headerLck        sync.Mutex
+	logger           Logger
+	config           *httpClientConfig
+	cfSolvingHandler CFSolvingHandler
 }
 
 var DefaultTimeoutSeconds = 30
@@ -98,10 +99,11 @@ func NewHttpClient(logger Logger, options ...HttpClientOption) (HttpClient, erro
 	}
 
 	return &httpClient{
-		Client:    *client,
-		logger:    logger,
-		config:    config,
-		headerLck: sync.Mutex{},
+		Client:           *client,
+		logger:           logger,
+		config:           config,
+		headerLck:        sync.Mutex{},
+		cfSolvingHandler: config.cfSolvingHandler,
 	}, nil
 }
 
@@ -310,7 +312,7 @@ func (c *httpClient) Do(req *http.Request) (*http.Response, error) {
 		c.logger.Debug("raw request bytes sent over wire: %d (%d kb)", len(requestBytes), len(requestBytes)/1024)
 	}
 
-	resp, err := c.Client.Do(req)
+	resp, err := c.requestWithAntibotSolution(req)
 	if err != nil {
 		c.logger.Debug("failed to do request: %s", err.Error())
 		return nil, err
@@ -348,6 +350,20 @@ func (c *httpClient) Do(req *http.Request) (*http.Response, error) {
 	return resp, nil
 }
 
+func (c *httpClient) requestWithAntibotSolution(request *http.Request) (*http.Response, error) {
+	resp, err := c.Client.Do(request)
+	if err != nil {
+		return nil, err
+	}
+
+	if c.cfSolvingHandler != nil {
+		// we are passing the whole client to the solver as we have to do various sub requests for solving the anti bot challenge
+		return c.cfSolvingHandler.Solve(c.logger, c, resp)
+	}
+
+	return resp, nil
+}
+
 func (c *httpClient) Get(url string) (resp *http.Response, err error) {
 	req, err := http.NewRequest(http.MethodGet, url, nil)
 	if err != nil {
diff --git a/client_options.go b/client_options.go
index 5d6ca13..7339f77 100644
--- a/client_options.go
+++ b/client_options.go
@@ -39,6 +39,7 @@ type httpClientConfig struct {
 	badPinHandler               BadPinHandlerFunc
 	proxyUrl                    string
 	serverNameOverwrite         string
+	cfSolvingHandler            CFSolvingHandler
 	transportOptions            *TransportOptions
 	cookieJar                   http.CookieJar
 	clientProfile               ClientProfile
@@ -199,3 +200,11 @@ func WithServerNameOverwrite(serverName string) HttpClientOption {
 		config.serverNameOverwrite = serverName
 	}
 }
+
+// WithCFSolvingHandler configures a TLS client to use a CF solving handler.
+// You can instantiate the built-in HawkAIO CF integration.
+func WithCFSolvingHandler(cfSolvingHandler CFSolvingHandler) HttpClientOption {
+	return func(config *httpClientConfig) {
+		config.cfSolvingHandler = cfSolvingHandler
+	}
+}
diff --git a/example/main.go b/example/main.go
index 010fe4b..e92185b 100644
--- a/example/main.go
+++ b/example/main.go
@@ -86,7 +86,6 @@ func sslPinning() {
 	}
 
 	resp, err := client.Do(req)
-
 	if err != nil {
 		log.Println(err)
 		return
@@ -109,10 +108,17 @@ func requestToppsAsChrome107Client() {
 		tls_client.WithTimeoutSeconds(30),
 		tls_client.WithClientProfile(tls_client.Chrome_107),
 		tls_client.WithDebug(),
-		//tls_client.WithProxyUrl("http://user:pass@host:port"),
-		//tls_client.WithNotFollowRedirects(),
-		//tls_client.WithInsecureSkipVerify(),
-		tls_client.WithCookieJar(jar), // create cookieJar instance and pass it as argument
+		tls_client.WithTransportOptions(&tls_client.TransportOptions{
+			DisableKeepAlives:      false,
+			DisableCompression:     false,
+			MaxIdleConns:           0,
+			MaxIdleConnsPerHost:    0,
+			MaxConnsPerHost:        0,
+			MaxResponseHeaderBytes: 0,
+			WriteBufferSize:        0,
+			ReadBufferSize:         0,
+		}),
+		tls_client.WithCookieJar(jar),
 	}
 
 	client, err := tls_client.NewHttpClient(tls_client.NewNoopLogger(), options...)
@@ -161,7 +167,6 @@ func requestToppsAsChrome107Client() {
 	}
 
 	resp, err := client.Do(req)
-
 	if err != nil {
 		log.Println(err)
 		return
@@ -172,7 +177,6 @@ func requestToppsAsChrome107Client() {
 	log.Printf("requesting topps as chrome107 => status code: %d\n", resp.StatusCode)
 
 	u, err := url.Parse("https://www.topps.com/")
-
 	if err != nil {
 		log.Println(err)
 		return
@@ -219,7 +223,6 @@ func postAsTlsClient() {
 	}
 
 	resp, err := client.Do(req)
-
 	if err != nil {
 		log.Println(err)
 		return
@@ -284,7 +287,6 @@ func requestWithFollowRedirectSwitch() {
 	}
 
 	resp, err := client.Do(req)
-
 	if err != nil {
 		log.Println(err)
 		return
@@ -327,7 +329,6 @@ func downloadImageWithTlsClient() {
 	}
 
 	resp, err := client.Do(req)
-
 	if err != nil {
 		log.Println(err)
 		return
@@ -340,7 +341,6 @@ func downloadImageWithTlsClient() {
 	log.Printf("requesting image => status code: %d\n", resp.StatusCode)
 
 	ex, err := os.Executable()
-
 	if err != nil {
 		log.Println(err)
 		return
@@ -420,7 +420,6 @@ func rotateProxiesOnClient() {
 	}
 
 	resp, err := client.Do(req)
-
 	if err != nil {
 		log.Println(err)
 		return
@@ -627,7 +626,6 @@ func requestWithCustomClient() {
 	}
 
 	resp, err := client.Do(req)
-
 	if err != nil {
 		log.Println(err)
 		return
diff --git a/go.mod b/go.mod
index f4ff88b..215d9eb 100644
--- a/go.mod
+++ b/go.mod
@@ -3,6 +3,8 @@ module github.com/bogdanfinn/tls-client
 go 1.20
 
 require (
+	github.com/Lazarus/lz-string-go v0.0.0-20220923232958-c256c46c2022
+	github.com/anaskhan96/soup v1.2.5
 	github.com/bogdanfinn/fhttp v0.5.22
 	github.com/bogdanfinn/utls v1.5.16
 	github.com/google/uuid v1.3.0
@@ -25,3 +27,4 @@ require (
 // replace github.com/bogdanfinn/utls => ../utls
 
 // replace github.com/bogdanfinn/fhttp => ../fhttp
+replace github.com/juiced-aio/hawk-go => ../hawk-go
diff --git a/go.sum b/go.sum
index 0c4f634..cf47133 100644
--- a/go.sum
+++ b/go.sum
@@ -1,3 +1,7 @@
+github.com/Lazarus/lz-string-go v0.0.0-20220923232958-c256c46c2022 h1:hKm9YZMsKTfEoWzsHFEiaS3hMUacsjxlJZl8FOFN9fw=
+github.com/Lazarus/lz-string-go v0.0.0-20220923232958-c256c46c2022/go.mod h1:zhKAxszD+dMWmLOH6zlemBxkK+agsDEO2zabxpfgTik=
+github.com/anaskhan96/soup v1.2.5 h1:V/FHiusdTrPrdF4iA1YkVxsOpdNcgvqT1hG+YtcZ5hM=
+github.com/anaskhan96/soup v1.2.5/go.mod h1:6YnEp9A2yywlYdM4EgDz9NEHclocMepEtku7wg6Cq3s=
 github.com/andybalholm/brotli v1.0.4 h1:V7DdXeJtZscaqfNuAdSRuRFzuiKlHSC/Zh3zl9qY3JY=
 github.com/andybalholm/brotli v1.0.4/go.mod h1:fO7iG3H7G2nSZ7m0zPUDn85XEX2GTukHGRSepvi9Eig=
 github.com/bogdanfinn/fhttp v0.5.22 h1:U1jhZRtuaOanWWcm1WdMFnwMvSxUQgvO6berqAVTc5o=
@@ -15,17 +19,22 @@ github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZb
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
+github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.8.0 h1:pSgiaMZlXftHpm5L7V1+rVB+AZJydKsMxsQBIJw4PKk=
 github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
 github.com/tam7t/hpkp v0.0.0-20160821193359-2b70b4024ed5 h1:YqAladjX7xpA6BM04leXMWAEjS0mTZ5kUU9KRBriQJc=
 github.com/tam7t/hpkp v0.0.0-20160821193359-2b70b4024ed5/go.mod h1:2JjD2zLQYH5HO74y5+aE3remJQvl6q4Sn6aWA2wD1Ng=
+golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.1.0 h1:MDRAIl0xIo9Io2xV565hzXHw3zVseKrJKodhohM5CjU=
 golang.org/x/crypto v0.1.0/go.mod h1:RecgLatLF4+eUMCP1PoPZQb+cVrJcOPbHkTkbkB9sbw=
+golang.org/x/net v0.0.0-20200114155413-6afb5195e5aa/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.5.0 h1:GyT4nK/YDHSqa1c4753ouYCDajOYKTja9Xb/OHtgvSw=
 golang.org/x/net v0.5.0/go.mod h1:DivGGAXEgPSlEBzxGzZI+ZLohi+xUj054jfeKui00ws=
+golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.4.0 h1:Zr2JFtRQNX3BCZ8YtxRE9hNJYC8J6I1MVbMg6owUp18=
 golang.org/x/sys v0.4.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.6.0 h1:3XmdazWV+ubf7QgHSTWeykHOci5oeekaGJBLkrkaw4k=
 golang.org/x/text v0.6.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405 h1:yhCVgyC4o1eVCa2tZl7eS0r+SDo693bJlVdllGtEeKM=
diff --git a/hawk/captcha_solver.go b/hawk/captcha_solver.go
new file mode 100644
index 0000000..7e211a4
--- /dev/null
+++ b/hawk/captcha_solver.go
@@ -0,0 +1,204 @@
+package hawk
+
+import (
+	"bytes"
+	"encoding/base64"
+	"encoding/json"
+	"fmt"
+	"net/url"
+	"strings"
+	"time"
+
+	lz "github.com/Lazarus/lz-string-go"
+	http "github.com/bogdanfinn/fhttp"
+	tls_client "github.com/bogdanfinn/tls-client"
+)
+
+// In Progress
+func handleFirstCaptchaFactory(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) solver {
+	return func(s cfChallengeState) (cfChallengeState, error) {
+		/* Handling captcha
+		   Note that this function is designed to work with cloudscraper,
+		   if you are building your own flow you will need to rework this part a bit.
+		*/
+
+		var token string
+		var err error
+		if s.finalApi.Click {
+			token = "click"
+		} else {
+			logger.Debug("Captcha needed, requesting token.")
+
+			token, err = config.CaptchaFunc(s.originalResponse.Request.URL.String(), s.finalApi.SiteKey)
+			if err != nil {
+				return s, err
+			}
+		}
+
+		payload, err := json.Marshal(map[string]interface{}{
+			"result":             s.result,
+			"token":              token,
+			"h-captcha-response": token,
+			"data":               s.finalApi.Result,
+		})
+		if err != nil {
+			return s, err
+		}
+
+		requestUrl, err := url.Parse(fmt.Sprintf("https://%v/cf-a/ov1/cap1", config.ApiDomain))
+		if err != nil {
+			return s, err
+		}
+
+		for key, value := range config.AuthParams {
+			requestUrl.Query().Set(key, value)
+		}
+
+		ff, err := client.Post(requestUrl.String(), "application/json", bytes.NewBuffer(payload))
+		if err != nil {
+			return s, err
+		}
+		defer ff.Body.Close()
+
+		var handleCaptchaResponse apiResponse
+		if err := readAndUnmarshalBody(ff.Body, &handleCaptchaResponse); err != nil {
+			return s, err
+		}
+		s.firstCaptchaResult = handleCaptchaResponse
+
+		return s, nil
+	}
+
+}
+
+func submitCaptchaFactory(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) solver {
+	return func(s cfChallengeState) (cfChallengeState, error) {
+		// Submits the challenge + captcha and trys to access target url
+		if !s.captchaResponseAPI.Valid {
+			return s, nil
+		}
+
+		payloadMap := map[string]string{
+			"r":               s.requestR,
+			"cf_captcha_kind": "h",
+			"vc":              s.requestPass,
+			"captcha_vc":      s.captchaResponseAPI.JschlVc,
+			"captcha_answer":  s.captchaResponseAPI.JschlAnswer,
+			"cf_ch_verify":    "plat",
+		}
+
+		if s.captchaResponseAPI.CfChCpReturn != "" {
+			payloadMap["cf_ch_cp_return"] = s.captchaResponseAPI.CfChCpReturn
+		}
+
+		if s.md != "" {
+			payloadMap["md"] = s.md
+		}
+
+		// "captchka" Spelling mistake?
+		payloadMap["h-captcha-response"] = "captchka"
+
+		payload := createParams(payloadMap)
+
+		req, err := http.NewRequest(http.MethodPost, s.requestURL, bytes.NewBufferString(payload))
+		if err != nil {
+			return s, err
+		}
+
+		req.Header = submitHeaders
+		req.Header["referer"] = []string{s.originalResponse.Request.URL.String()}
+		req.Header["origin"] = []string{"https://" + s.domain}
+		req.Header["user-agent"] = s.originalResponse.Request.Header["user-agent"]
+
+		if (time.Now().Unix() - s.startTime.Unix()) < 5 {
+			// Waiting X amount of sec for CF delay
+			logger.Debug("sleeping %d sec for cf delay", 5-(time.Now().Unix()-s.startTime.Unix()))
+
+			time.Sleep(time.Duration(5-(time.Now().Unix()-s.startTime.Unix())) * time.Second)
+		}
+
+		final, err := client.Do(req)
+		if err != nil {
+			return s, err
+		}
+		defer final.Body.Close()
+
+		s.finalResponse = final
+
+		logger.Debug("submitted captcha challange")
+
+		return s, nil
+	}
+}
+
+func handleSecondCaptchaFactory(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) solver {
+	return func(s cfChallengeState) (cfChallengeState, error) {
+		/* Handling captcha
+		   Note that this function is designed to work with cloudscraper,
+		   if you are building your own flow you will need to rework this part a bit.
+		*/
+		resultDecoded, err := base64.StdEncoding.DecodeString(s.firstCaptchaResult.Result)
+		if err != nil {
+			return s, fmt.Errorf("posting to cloudflare challenge endpoint error: %w", err)
+		}
+
+		payload := []byte(createParams(map[string]string{
+			s.name: lz.Compress(string(resultDecoded), s.keyStrUriSafe),
+		}))
+
+		req, err := http.NewRequest(http.MethodPost, s.initURL, bytes.NewBuffer(payload))
+		if err != nil {
+			return s, err
+		}
+
+		req.Header = challengeHeaders
+		initURLSplit := strings.Split(s.initURL, "/")
+		req.Header["cf-challenge"] = []string{initURLSplit[len(initURLSplit)-1]}
+		req.Header["referer"] = []string{strings.Split(s.originalResponse.Request.URL.String(), "?")[0]}
+		req.Header["origin"] = []string{"https://" + s.domain}
+		req.Header["user-agent"] = s.originalResponse.Request.Header["user-agent"]
+
+		gg, err := client.Do(req)
+		if err != nil {
+			return s, err
+		}
+		defer gg.Body.Close()
+
+		body, err := readAndCloseBody(gg.Body)
+		if err != nil {
+			return s, err
+		}
+
+		payload, err = json.Marshal(map[string]interface{}{
+			"body_sensor": base64.StdEncoding.EncodeToString(body),
+			"result":      s.baseObj,
+		})
+		if err != nil {
+			return s, err
+		}
+
+		requestUrl, err := url.Parse(fmt.Sprintf("https://%v/cf-a/ov1/cap2", config.ApiDomain))
+		if err != nil {
+			return s, err
+		}
+
+		for key, value := range config.AuthParams {
+			requestUrl.Query().Set(key, value)
+		}
+
+		hh, err := client.Post(requestUrl.String(), "application/json", bytes.NewBuffer(payload))
+		if err != nil {
+			return s, err
+		}
+		defer hh.Body.Close()
+
+		handleCaptchaResponse := apiResponse{}
+		err = readAndUnmarshalBody(hh.Body, &handleCaptchaResponse)
+		if err != nil {
+			return s, err
+		}
+		s.captchaResponseAPI = handleCaptchaResponse
+
+		return s, fmt.Errorf("captcha was not accepted - most likly wrong token")
+	}
+}
diff --git a/hawk/cf.go b/hawk/cf.go
new file mode 100644
index 0000000..69036b7
--- /dev/null
+++ b/hawk/cf.go
@@ -0,0 +1,148 @@
+package hawk
+
+import (
+	"fmt"
+	"time"
+
+	http "github.com/bogdanfinn/fhttp"
+	tls_client "github.com/bogdanfinn/tls-client"
+)
+
+type hawkCF struct {
+	apiKey string
+	config cfConfig
+}
+
+func NewHawkCF(apiKey string) (tls_client.CFSolvingHandler, error) {
+	/*jar := tls_client.NewCookieJar()
+
+	options := []tls_client.HttpClientOption{
+		tls_client.WithTimeoutSeconds(60),
+		tls_client.WithClientProfile(tls_client.CloudflareCustom),
+		tls_client.WithCookieJar(jar),
+	}
+
+	httpClient, err := tls_client.NewHttpClient(tls_client.NewNoopLogger(), options...)
+
+	if err != nil {
+		return nil, err
+	}*/
+
+	cfConfig := cfConfig{
+		ApiDomain: "cf-v2.hwkapi.com",
+		AuthParams: map[string]string{
+			"auth": apiKey,
+		},
+		ErrorDelay: 30,
+		MaxRetries: 5,
+	}
+
+	return &hawkCF{
+		apiKey: apiKey,
+		config: cfConfig,
+	}, nil
+}
+
+func (h *hawkCF) Solve(logger tls_client.Logger, client tls_client.HttpClient, response *http.Response) (*http.Response, error) {
+	originalResponseBody, err := readAndCopyBody(response)
+	if err != nil {
+		return response, err
+	}
+
+	challengeState := cfChallengeState{
+		originalResponseBody: originalResponseBody,
+		originalResponse:     response,
+		startTime:            time.Now(),
+		domain:               response.Request.URL.Host,
+	}
+
+	if isNewIUAMChallenge(response) {
+		resp, err := h.run(logger, client, challengeState)
+		if err != nil {
+			return response, err
+		}
+
+		return resp, nil
+	}
+
+	if isNewCaptchaChallenge(response) {
+		h.config.Captcha = true
+
+		resp, err := h.run(logger, client, challengeState)
+		if err != nil {
+			return response, err
+		}
+
+		return resp, nil
+	}
+
+	if isFingerprintChallenge(response) {
+		h.config.FingerPrint = true
+
+		resp, err := h.fingerprint(logger, client, challengeState)
+		if err != nil {
+			return response, err
+		}
+
+		return resp, nil
+	}
+
+	return response, nil
+}
+
+func (h *hawkCF) run(logger tls_client.Logger, client tls_client.HttpClient, challengeState cfChallengeState) (*http.Response, error) {
+	for retries := 0; challengeState.finalResponse == nil || h.config.MaxRetries >= retries; retries++ {
+		if h.config.Captcha && h.config.CaptchaFunc == nil {
+			return nil, fmt.Errorf("captcha is present with nil CaptchaFunction")
+		}
+
+		var err error
+		for _, f := range getChallengeSolver(logger, client, h.config) {
+			challengeState, err = executeWithRetries(f, h.config, challengeState)
+			if err != nil {
+				return nil, err
+			}
+		}
+
+		if challengeState.finalApi.Status == "rerun" {
+			continue
+		}
+
+		if !h.config.Captcha && challengeState.finalApi.Captcha {
+			return nil, fmt.Errorf("cf returned captcha and captcha handling is disabled")
+		}
+
+		if challengeState.finalApi.Captcha {
+			for _, f := range getCaptchaSolver(logger, client, h.config) {
+				challengeState, err = executeWithRetries(f, h.config, challengeState)
+				if err != nil {
+					return nil, err
+				}
+			}
+
+			continue
+		}
+
+		submitChallenge := submitChallengeFactory(logger, client, h.config)
+
+		challengeState, err = executeWithRetries(submitChallenge, h.config, challengeState)
+		if err != nil {
+			return nil, err
+		}
+	}
+
+	return challengeState.finalResponse, nil
+}
+
+func (h *hawkCF) fingerprint(logger tls_client.Logger, client tls_client.HttpClient, challengeState cfChallengeState) (*http.Response, error) {
+	var err error
+
+	for _, f := range getFingerprintSolver(logger, client, h.config) {
+		challengeState, err = executeWithRetries(f, h.config, challengeState)
+		if err != nil {
+			return nil, err
+		}
+	}
+
+	return challengeState.finalResponse, nil
+}
diff --git a/hawk/challenge_solver.go b/hawk/challenge_solver.go
new file mode 100644
index 0000000..b0e5f3e
--- /dev/null
+++ b/hawk/challenge_solver.go
@@ -0,0 +1,338 @@
+package hawk
+
+import (
+	"bytes"
+	"encoding/base64"
+	"encoding/json"
+	"fmt"
+	"net/url"
+	"strings"
+
+	lz "github.com/Lazarus/lz-string-go"
+	http "github.com/bogdanfinn/fhttp"
+	tls_client "github.com/bogdanfinn/tls-client"
+)
+
+func solveFactory(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) solver {
+	return func(s cfChallengeState) (cfChallengeState, error) {
+		// get initial response body
+		if len(s.initialResponseBody) != 0 && len(s.urlPart) != 0 && len(s.keyStrUriSafe) != 0 {
+			return s, nil
+		}
+
+		extractedScript, err := extractChallengeScript(string(s.originalResponseBody))
+		if err != nil {
+			return s, err
+		}
+
+		// Fetching CF script
+		script := fmt.Sprintf("https://%s%s", s.domain, *extractedScript)
+
+		req, err := http.NewRequest(http.MethodGet, script, nil)
+		if err != nil {
+			return s, fmt.Errorf("could no create request for challenging solving: %w", err)
+		}
+
+		req.Header = initHeaders
+		req.Header["user-agent"] = s.originalResponse.Request.Header["user-agent"]
+		resp, err := client.Do(req)
+		if err != nil {
+			return s, fmt.Errorf("could not request: %w", err)
+		}
+
+		defer resp.Body.Close()
+
+		initialResponseBody, err := readAndCloseBody(resp.Body)
+		if err != nil {
+			return s, fmt.Errorf("could not request: %w", err)
+		}
+
+		urlPartP, err := extractUrlPartRegex(string(s.initialResponseBody))
+		if err != nil {
+			return s, err
+		}
+		urlPart := *urlPartP
+
+		keyStringUri, err := extractKeyStringUri(string(s.initialResponseBody))
+		if err != nil {
+			return s, err
+		}
+
+		s.urlPart = urlPart
+		s.keyStrUriSafe = *keyStringUri
+
+		s.initialResponseBody = initialResponseBody
+
+		logger.Debug("Loaded init script.")
+
+		return s, nil
+	}
+}
+
+// initUrl
+// initURL
+// requestURL
+// result
+// name
+// baseObj
+// requestPass
+// requestR
+// ts
+// md
+func challengeInitiationPayloadFactory(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) solver {
+	return func(s cfChallengeState) (cfChallengeState, error) {
+		if len(s.initURL) != 0 && len(s.requestURL) != 0 && len(s.result) != 0 && len(s.name) != 0 && len(s.baseObj) != 0 && len(s.requestPass) != 0 && len(s.requestR) != 0 && s.ts != 0 && len(s.md) != 0 {
+			return s, nil
+		}
+
+		payload, err := json.Marshal(map[string]interface{}{
+			"body":    base64.StdEncoding.EncodeToString(s.originalResponseBody),
+			"url":     s.urlPart,
+			"domain":  s.domain,
+			"captcha": config.Captcha,
+			"key":     s.keyStrUriSafe,
+		})
+
+		if err != nil {
+			return s, fmt.Errorf("could not marshal body: %w", err)
+		}
+
+		requestUrl, err := url.Parse(fmt.Sprintf("https://%s/cf-a/ov1/p1", config.ApiDomain))
+		if err != nil {
+			return s, fmt.Errorf("could not create requestUrl: %w", err)
+		}
+
+		for key, value := range config.AuthParams {
+			requestUrl.Query().Set(key, value)
+		}
+
+		challengePayload, err := client.Post(requestUrl.String(), "application/json", bytes.NewBuffer(payload))
+		if err != nil {
+			return s, err
+		}
+		defer challengePayload.Body.Close()
+
+		var challengePayloadResponse apiResponse
+		err = readAndUnmarshalBody(challengePayload.Body, &challengePayloadResponse)
+		if err != nil {
+			return s, err
+		}
+
+		s.initURL = challengePayloadResponse.URL
+		s.requestURL = challengePayloadResponse.ResultURL
+		s.result = challengePayloadResponse.Result
+		s.name = challengePayloadResponse.Name
+		s.baseObj = challengePayloadResponse.BaseObj
+		s.requestPass = challengePayloadResponse.Pass
+		s.requestR = challengePayloadResponse.R
+		s.ts = challengePayloadResponse.TS
+		s.md = challengePayloadResponse.Md
+
+		logger.Debug("Submitted init payload to the api.")
+
+		return s, nil
+	}
+}
+
+func initiateCloudflareFactory(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) solver {
+	return func(s cfChallengeState) (cfChallengeState, error) {
+		// challengePayloadBody
+		if len(s.challengePayloadBody) != 0 {
+			return s, nil
+		}
+
+		resultDecoded, err := base64.StdEncoding.DecodeString(s.result)
+		if err != nil {
+			return s, err
+		}
+
+		payload := createParams(map[string]string{
+			s.name: lz.Compress(string(resultDecoded), s.keyStrUriSafe),
+		})
+
+		if err != nil {
+			return s, err
+		}
+
+		req, err := http.NewRequest(http.MethodPost, s.initURL, bytes.NewBufferString(payload))
+		if err != nil {
+			return s, err
+		}
+
+		req.Header = challengeHeaders
+		initURLSplit := strings.Split(s.initURL, "/")
+		req.Header["cf-challenge"] = []string{initURLSplit[len(initURLSplit)-1]}
+		req.Header["referer"] = []string{strings.Split(s.originalResponse.Request.URL.String(), "?")[0]}
+		req.Header["origin"] = []string{"https://" + s.domain}
+		req.Header["user-agent"] = s.originalResponse.Request.Header["user-agent"]
+		resp, err := client.Do(req)
+		if err != nil {
+			return s, err
+		}
+
+		challengePayloadBody, err := readAndCopyBody(resp)
+		if err != nil {
+			return s, err
+		}
+		defer resp.Body.Close()
+
+		s.challengePayloadBody = string(challengePayloadBody)
+		s.challengePayloadBody = string(challengePayloadBody)
+
+		logger.Debug("Initiated challenge.")
+
+		return s, nil
+	}
+}
+
+func solvePayloadFactory(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) solver {
+	return func(s cfChallengeState) (cfChallengeState, error) {
+		// result
+		// Fetches main challenge payload from hawk api
+
+		body := map[string]interface{}{
+			"body_home":   base64.RawURLEncoding.EncodeToString(s.originalResponseBody),
+			"body_sensor": base64.RawURLEncoding.EncodeToString([]byte(s.challengePayloadBody)),
+			"result":      s.baseObj,
+			"ts":          s.ts,
+			"url":         s.initURL,
+		}
+
+		if len(s.result) != 0 {
+			body["rerun_base"] = s.result
+			body["rerun"] = true
+		} else {
+			body["ua"] = s.originalResponse.Request.Header["user-agent"][0]
+		}
+
+		payload, err := json.Marshal(map[string]interface{}{
+			"body_home":   base64.RawURLEncoding.EncodeToString(s.originalResponseBody),
+			"body_sensor": base64.RawURLEncoding.EncodeToString([]byte(s.challengePayloadBody)),
+			"result":      s.baseObj,
+			"ts":          s.ts,
+			"url":         s.initURL,
+			"ua":          s.originalResponse.Request.Header["user-agent"][0],
+		})
+		if err != nil {
+			return s, err
+		}
+
+		requestUrl, err := url.Parse(fmt.Sprintf("https://%s/cf-a/ov1/p2", config.ApiDomain))
+		if err != nil {
+			return s, err
+		}
+
+		for key, value := range config.AuthParams {
+			requestUrl.Query().Set(key, value)
+		}
+
+		cc, err := client.Post(requestUrl.String(), "application/json", bytes.NewBuffer(payload))
+		if err != nil {
+			return s, err
+		}
+		defer cc.Body.Close()
+
+		var solvePayloadResponse apiResponse
+		if err := readAndUnmarshalBody(cc.Body, &solvePayloadResponse); err != nil {
+			return s, err
+		}
+		s.result = solvePayloadResponse.Result
+		s.result = solvePayloadResponse.Result
+
+		logger.Debug("Fetched challenge payload.")
+
+		return s, nil
+	}
+}
+
+func sendMainPayloadFactory(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) solver {
+	return func(s cfChallengeState) (cfChallengeState, error) {
+		// mainPayloadResponseBody
+		// Sends the main payload to cf
+		if len(s.mainPayloadResponseBody) != 0 {
+			return s, nil
+		}
+
+		resultDecoded, err := base64.StdEncoding.DecodeString(s.result)
+		if err != nil {
+			return s, err
+		}
+		payload := createParams(map[string]string{
+			s.name: lz.Compress(string(resultDecoded), s.keyStrUriSafe),
+		})
+
+		if err != nil {
+			return s, err
+		}
+
+		req, err := http.NewRequest(http.MethodPost, s.initURL, bytes.NewBufferString(payload))
+		if err != nil {
+			return s, err
+		}
+
+		req.Header = challengeHeaders
+
+		initURLSplit := strings.Split(s.initURL, "/")
+		req.Header["cf-challenge"] = []string{initURLSplit[len(initURLSplit)-1]}
+		req.Header["referer"] = []string{strings.Split(s.originalResponse.Request.URL.String(), "?")[0]}
+		req.Header["origin"] = []string{"https://" + s.domain}
+		req.Header["user-agent"] = s.originalResponse.Request.Header["user-agent"]
+
+		mainPayloadResponse, err := client.Do(req)
+		if err != nil {
+			return s, err
+		}
+
+		body, err := readAndCopyBody(mainPayloadResponse)
+		s.mainPayloadResponseBody = string(body)
+
+		defer mainPayloadResponse.Body.Close()
+
+		logger.Debug("Submitted challenge.")
+
+		return s, nil
+	}
+}
+
+func getChallengeResultFactory(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) solver {
+	return func(s cfChallengeState) (cfChallengeState, error) {
+		// get finalApi
+		if s.finalApi != nil {
+			return s, nil
+		}
+
+		payload, err := json.Marshal(map[string]interface{}{
+			"body_sensor": base64.StdEncoding.EncodeToString([]byte(s.mainPayloadResponseBody)),
+			"result":      s.baseObj,
+		})
+		if err != nil {
+			return s, err
+		}
+
+		requestUrl, err := url.Parse(fmt.Sprintf("https://%s/cf-a/ov1/p3", config.ApiDomain))
+		if err != nil {
+			return s, err
+		}
+
+		for key, value := range config.AuthParams {
+			requestUrl.Query().Set(key, value)
+		}
+
+		ee, err := client.Post(requestUrl.String(), "application/json", bytes.NewBuffer(payload))
+		if err != nil {
+			return s, err
+		}
+		defer ee.Body.Close()
+
+		response := &apiResponse{}
+		if err = readAndUnmarshalBody(ee.Body, response); err != nil {
+			return s, err
+		}
+
+		s.finalApi = response
+
+		logger.Debug("Fetched challenge response.")
+
+		return s, nil
+	}
+}
diff --git a/hawk/fingerprint_solver.go b/hawk/fingerprint_solver.go
new file mode 100644
index 0000000..a3d98cf
--- /dev/null
+++ b/hawk/fingerprint_solver.go
@@ -0,0 +1,146 @@
+package hawk
+
+import (
+	"bytes"
+	"encoding/base64"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"net/url"
+	"strings"
+
+	http "github.com/bogdanfinn/fhttp"
+	tls_client "github.com/bogdanfinn/tls-client"
+)
+
+// get initialResponseBody
+func initiateScriptFactory(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) solver {
+	return func(s cfChallengeState) (cfChallengeState, error) {
+		if len(s.initialResponseBody) != 0 {
+			return s, nil
+		}
+
+		urlPath := strings.Split(strings.Split(string(s.originalResponseBody), `<script src="`)[3], `"`)[0]
+		s.initURL = fmt.Sprintf("https://%s%s", s.domain, urlPath)
+
+		req, err := http.NewRequest(http.MethodGet, s.initURL, nil)
+		if err != nil {
+			return s, err
+		}
+
+		resp, err := client.Do(req)
+		if err != nil {
+			return s, err
+		}
+		defer resp.Body.Close()
+
+		initialResponseBody, err := readAndCloseBody(resp.Body)
+		if err != nil {
+			return s, err
+		}
+
+		s.initialResponseBody = initialResponseBody
+
+		return s, nil
+	}
+}
+
+// get p1 result/url
+func getPayloadFromAPIFactory(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) solver {
+	return func(s cfChallengeState) (cfChallengeState, error) {
+		/*
+				  Recieve the needed fingerprint data from hawk api
+			        :return:
+		*/
+
+		if len(s.p1Result) != 0 && len(s.p1TargetURL) != 0 {
+			return s, nil
+		}
+
+		payload, err := json.Marshal(map[string]string{
+			"body": base64.StdEncoding.EncodeToString(s.initialResponseBody),
+			"url":  s.initURL,
+		})
+		if err != nil {
+			return s, err
+		}
+
+		requestUrl, err := url.Parse(fmt.Sprintf("https://%s/cf-a/fp/p1", config.ApiDomain))
+		if err != nil {
+			return s, err
+		}
+
+		for key, value := range config.AuthParams {
+			requestUrl.Query().Set(key, value)
+		}
+
+		resp, err := client.Post(requestUrl.String(), "application/json", bytes.NewReader(payload))
+		if err != nil {
+			return s, err
+		}
+		defer resp.Body.Close()
+
+		var p1Response apiResponse
+		if err := readAndUnmarshalBody(resp.Body, &p1Response); err != nil {
+			return s, err
+		}
+		s.p1Result = p1Response.Result
+		s.p1TargetURL = p1Response.URL
+
+		return s, nil
+	}
+}
+
+func submitFingerprintChallengeFactory(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) solver {
+	return func(s cfChallengeState) (cfChallengeState, error) {
+		/*
+		   Submit the fingerprint data to cloudflare
+		          :return:
+		*/
+
+		logger.Debug("Submitting fingerprint")
+		result, err := client.Post(s.p1TargetURL, "", bytes.NewBufferString(s.result))
+		if err != nil {
+			return s, err
+		}
+		defer result.Body.Close()
+
+		if result.StatusCode == http.StatusTooManyRequests {
+			return s, fmt.Errorf("FP DATA declined")
+		}
+		if result.StatusCode == http.StatusNotFound {
+			return s, errors.New("Fp ep changed")
+		}
+
+		return s, nil
+	}
+}
+
+// get final response
+func getPageFactory(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) solver {
+	return func(s cfChallengeState) (cfChallengeState, error) {
+		/*
+				 Perform the original request
+			        :return:
+		*/
+		if s.finalResponse != nil {
+			return s, nil
+		}
+
+		logger.Debug("Fetching original request target")
+
+		url := s.originalResponse.Request.URL.String()
+
+		if strings.Contains(s.originalResponse.Request.URL.String(), "?") {
+			url = strings.Split(s.originalResponse.Request.URL.String(), "?")[0]
+		}
+
+		finalResp, err := client.Get(url)
+		if err != nil {
+			return s, err
+		}
+		s.finalResponse = finalResp
+
+		return s, nil
+	}
+}
diff --git a/hawk/headers.go b/hawk/headers.go
new file mode 100644
index 0000000..75d98ba
--- /dev/null
+++ b/hawk/headers.go
@@ -0,0 +1,53 @@
+package hawk
+
+import "github.com/bogdanfinn/fhttp"
+
+var initHeaders = http.Header{
+	"sec-ch-ua":                 {`" Not;A Brand";v="99", "Google Chrome";v="91", "Chromium";v="91"`},
+	"sec-ch-ua-mobile":          {"?0"},
+	"upgrade-insecure-requests": {"1"},
+	"user-agent":                {""},
+	"accept":                    {"text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9"},
+	"sec-fetch-site":            {"none"},
+	"sec-fetch-mode":            {"navigate"},
+	"sec-fetch-user":            {"?1"},
+	"sec-fetch-dest":            {"document"},
+	"accept-encoding":           {"gzip, deflate, br"},
+	"accept-language":           {"en-US,en;q=0.9"},
+	http.HeaderOrderKey:         {"sec-ch-ua", "sec-ch-ua-mobile", "upgrade-insecure-requests", "user-agent", "accept", "sec-fetch-site", "sec-fetch-mode", "sec-fetch-site", "sec-fetch-dest", "accept-encoding", "accept-language"},
+	http.PHeaderOrderKey:        {":method", ":authority", ":scheme", ":path"},
+}
+
+var challengeHeaders = http.Header{
+	"user-agent":         {""},
+	"cf-challenge":       {"b6245c8f8a8cb25"},
+	"content-type":       {"application/x-www-form-urlencoded"},
+	"accept":             {"*/*"},
+	"origin":             {"https://www.origin.com"},
+	"sec-fetch-site":     {"same-origin"},
+	"sec-fetch-mode":     {"cors"},
+	"sec-fetch-dest":     {"empty"},
+	"referer":            {"https://www.referer.com/"},
+	"accept-encoding":    {"gzip, deflate, br"},
+	"accept-language":    {"en-US,en;q=0.9"},
+	http.HeaderOrderKey:  {"content-length", "user-agent", "cf-challenge", "content-type", "accept", "origin", "sec-fetch-site", "sec-fetch-mode", "sec-fetch-dest", "referer", "accept-encoding", "accept-language"},
+	http.PHeaderOrderKey: {":method", ":authority", ":scheme", ":path"},
+}
+
+var submitHeaders = http.Header{
+	"pragma":                    {"no-cache"},
+	"cache-control":             {"max-age=0"},
+	"upgrade-insecure-requests": {"1"},
+	"origin":                    {"https://www.origin.com"},
+	"content-type":              {"application/x-www-form-urlencoded"},
+	"user-agent":                {""},
+	"accept":                    {"text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9"},
+	"sec-fetch-site":            {"same-origin"},
+	"sec-fetch-mode":            {"navigate"},
+	"sec-fetch-dest":            {"document"},
+	"referer":                   {"https://www.referer.com/"},
+	"accept-encoding":           {"gzip, deflate, br"},
+	"accept-language":           {"en-US,en;q=0.9"},
+	http.HeaderOrderKey:         {"content-length", "pragma", "cache-control", "upgrade-insecure-requests", "origin", "content-type", "user-agent", "accept", "sec-fetch-site", "sec-fetch-mode", "sec-fetch-dest", "referer", "accept-encoding", "accept-language"},
+	http.PHeaderOrderKey:        {":method", ":authority", ":scheme", ":path"},
+}
diff --git a/hawk/notes.txt b/hawk/notes.txt
new file mode 100644
index 0000000..76291d4
--- /dev/null
+++ b/hawk/notes.txt
@@ -0,0 +1 @@
+- challenge detection needed a regex adjustment for handling " and '
diff --git a/hawk/solver_factory.go b/hawk/solver_factory.go
new file mode 100644
index 0000000..d68ffb8
--- /dev/null
+++ b/hawk/solver_factory.go
@@ -0,0 +1,155 @@
+package hawk
+
+import (
+	"bytes"
+	"time"
+
+	http "github.com/bogdanfinn/fhttp"
+	tls_client "github.com/bogdanfinn/tls-client"
+)
+
+type solverFactory func(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) solver
+type solver func(challengeState cfChallengeState) (cfChallengeState, error)
+
+var captchaSolver = []solverFactory{
+	handleFirstCaptchaFactory,
+	handleSecondCaptchaFactory,
+	submitCaptchaFactory,
+}
+
+func getCaptchaSolver(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) []solver {
+	var solver []solver
+
+	for _, solverFactory := range captchaSolver {
+		solver = append(solver, solverFactory(logger, client, config))
+	}
+
+	return solver
+}
+
+var fingerPrintSolver = []solverFactory{
+	initiateScriptFactory,
+	getPayloadFromAPIFactory,
+	submitFingerprintChallengeFactory,
+	getPageFactory,
+}
+
+func getFingerprintSolver(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) []solver {
+	var solver []solver
+
+	for _, solverFactory := range fingerPrintSolver {
+		solver = append(solver, solverFactory(logger, client, config))
+	}
+
+	return solver
+}
+
+var challengeSolver = []solverFactory{
+	solveFactory,
+	challengeInitiationPayloadFactory,
+	initiateCloudflareFactory,
+	solvePayloadFactory,
+	sendMainPayloadFactory,
+	getChallengeResultFactory,
+}
+
+func getChallengeSolver(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) []solver {
+	var solver []solver
+
+	for _, solverFactory := range challengeSolver {
+		solver = append(solver, solverFactory(logger, client, config))
+	}
+
+	return solver
+}
+
+func submitChallengeFactory(logger tls_client.Logger, client tls_client.HttpClient, config cfConfig) solver {
+	return func(s cfChallengeState) (cfChallengeState, error) {
+		// Submits the challenge and trys to access target url
+
+		payloadMap := map[string]string{
+			"r":            s.requestR,
+			"jschl_vc":     s.finalApi.JschlVc,
+			"pass":         s.requestPass,
+			"jschl_answer": s.finalApi.JschlAnswer,
+			"cf_ch_verify": "plat",
+		}
+
+		// cf added a new flow where they present a 503 followed up by a 403 captcha
+		if s.finalApi.CfChCpReturn != "" {
+			payloadMap["cf_ch_cp_return"] = s.finalApi.CfChCpReturn
+		}
+
+		if s.md != "" {
+			payloadMap["md"] = s.md
+		}
+		payload := createParams(payloadMap)
+
+		req, err := http.NewRequest(http.MethodPost, s.requestURL, bytes.NewBufferString(payload))
+		if err != nil {
+			return s, err
+		}
+
+		req.Header = submitHeaders
+		req.Header["referer"] = []string{s.originalResponse.Request.URL.String()}
+		req.Header["origin"] = []string{"https://" + s.domain}
+		req.Header["user-agent"] = s.originalResponse.Request.Header["user-agent"]
+
+		if (time.Now().Unix() - s.startTime.Unix()) < 5 {
+			// Waiting X amount of sec for CF delay
+			logger.Debug("sleeping %v sec for cf delay", 5-(time.Now().Unix()-s.startTime.Unix()))
+
+			time.Sleep(time.Duration(5-(time.Now().Unix()-s.startTime.Unix())) * time.Second)
+		}
+		final, err := client.Do(req)
+		if err != nil {
+			return s, err
+
+		}
+		defer final.Body.Close()
+
+		logger.Debug("Submitted final challange.")
+
+		if final.StatusCode != http.StatusForbidden {
+			s.finalResponse = final
+
+			return s, err
+		}
+
+		body, err := readAndCopyBody(final)
+		if err != nil {
+			return s, err
+		}
+
+		if !checkForCaptcha(string(body)) {
+			s.finalResponse = final
+
+			return s, nil
+		}
+
+		// as this was a 403 post we need to get again dont ask why just do it
+		req, err = http.NewRequest(http.MethodGet, s.originalResponse.Request.URL.String(), nil)
+		if err != nil {
+			return s, err
+		}
+
+		req.Header = s.originalResponse.Request.Header
+		weirdGetReq, err := client.Do(req)
+		if err != nil {
+			return s, err
+		}
+		defer weirdGetReq.Body.Close()
+
+		config.Captcha = true
+		s.originalResponse = weirdGetReq
+		originalBodyResponse, err := readAndCloseBody(weirdGetReq.Body)
+		if err != nil {
+			return s, err
+		}
+		// we have to start again
+		s.originalResponseBody = originalBodyResponse
+		s.domain = s.originalResponse.Request.URL.Host
+
+		return s, nil
+	}
+}
diff --git a/hawk/types.go b/hawk/types.go
new file mode 100644
index 0000000..4ef8569
--- /dev/null
+++ b/hawk/types.go
@@ -0,0 +1,76 @@
+package hawk
+
+import (
+	"time"
+
+	http "github.com/bogdanfinn/fhttp"
+)
+
+type cfConfig struct {
+	ApiDomain   string
+	AuthParams  map[string]string
+	Captcha     bool
+	CaptchaFunc func(originalURL, siteKey string) (string, error)
+	ErrorDelay  time.Duration
+	FingerPrint bool
+	MaxRetries  int
+}
+
+type cfChallengeState struct {
+	baseObj                 string
+	captchaResponseAPI      apiResponse
+	challengePayloadBody    string
+	domain                  string
+	finalApi                *apiResponse
+	finalResponse           *http.Response
+	firstCaptchaResult      apiResponse
+	initialResponseBody     []byte
+	initURL                 string
+	keyStrUriSafe           string
+	mainPayloadResponseBody string
+	md                      string
+	name                    string
+	originalResponse        *http.Response
+	originalResponseBody    []byte
+	p1Result                string
+	p1TargetURL             string
+	requestPass             string
+	requestR                string
+	requestURL              string
+	result                  string
+	startTime               time.Time
+	ts                      int
+	urlPart                 string
+}
+
+type apiResponse struct {
+	BaseObj      string `json:"baseobj"`
+	Captcha      bool   `json:"captcha"`
+	CfChCpReturn string `json:"cf_ch_cp_return"`
+	Click        bool   `json:"click"`
+	JschlAnswer  string `json:"jschl_answer"`
+	JschlVc      string `json:"jschl_vc"`
+	Md           string `json:"md"`
+	Name         string `json:"name"`
+	Pass         string `json:"pass"`
+	R            string `json:"r"`
+	Result       string `json:"result"`
+	ResultURL    string `json:"result_url"`
+	SiteKey      string `json:"sitekey"`
+	Status       string `json:"status"`
+	TS           int    `json:"ts"`
+	URL          string `json:"url"`
+	Valid        bool   `json:"valid"`
+}
+
+type errNotRetryable struct {
+	err error
+}
+
+func (e errNotRetryable) Error() string {
+	return e.err.Error()
+}
+
+func (e errNotRetryable) Unwrap() error {
+	return e.err
+}
diff --git a/hawk/utils.go b/hawk/utils.go
new file mode 100644
index 0000000..2e6794d
--- /dev/null
+++ b/hawk/utils.go
@@ -0,0 +1,213 @@
+package hawk
+
+import (
+	"bytes"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"io"
+	"net/url"
+	"regexp"
+	"strings"
+	"time"
+
+	"github.com/anaskhan96/soup"
+	http "github.com/bogdanfinn/fhttp"
+)
+
+var scriptReg = regexp.MustCompile("['|\"](/cdn-cgi/.+?)['|\"]")
+var urlPartRegex = regexp.MustCompile(`0\.[^\[\]\{\}\(\) \'\|\/)]{40,}`)
+var keyStringUriSaveRegex = regexp.MustCompile(`[\W]?([A-Za-z0-9+\-$]{65})[\W]`)
+
+const challengePlatform = "challenge-platform"
+
+func readAndCopyBody(r interface{}) ([]byte, error) {
+	var bodyReadCloser io.ReadCloser
+	switch r.(type) {
+	case *http.Response:
+		bodyReadCloser = r.(*http.Response).Body
+	}
+
+	defer bodyReadCloser.Close()
+
+	var body []byte
+	var err error
+	var b bytes.Buffer
+	t := io.TeeReader(bodyReadCloser, &b)
+	body, err = io.ReadAll(t)
+	if err != nil {
+		return body, err
+	}
+
+	newReadCloser := io.NopCloser(bytes.NewBuffer(body))
+	switch r.(type) {
+	case *http.Response:
+		r.(*http.Response).Body = newReadCloser
+	}
+
+	return body, err
+}
+
+func readAndUnmarshalBody(respBody io.ReadCloser, x interface{}) error {
+	body, err := io.ReadAll(respBody)
+	if err != nil {
+		return err
+	}
+	err = json.Unmarshal(body, &x)
+
+	return err
+}
+
+func readAndCloseBody(respBody io.ReadCloser) ([]byte, error) {
+	defer respBody.Close()
+
+	return io.ReadAll(respBody)
+}
+
+func createParams(paramsLong map[string]string) string {
+	params := url.Values{}
+	for key, value := range paramsLong {
+		params.Add(key, value)
+	}
+
+	return params.Encode()
+}
+
+func checkForCaptcha(body string) bool {
+	doc := soup.HTMLParse(body)
+
+	element := doc.Find("input", "name", "cf_captcha_kind")
+	if element.Error != nil {
+		return false
+	}
+	if val, ok := element.Attrs()["value"]; ok && val == "h" {
+		return true
+	}
+
+	return false
+}
+
+func extractKeyStringUri(body string) (*string, error) {
+	matches := keyStringUriSaveRegex.FindAllStringSubmatch(body, -1)
+	for _, m := range matches {
+		matchWithoutComma := strings.ReplaceAll(m[1], ",", "")
+		if strings.Contains(matchWithoutComma, "+") && strings.Contains(matchWithoutComma, "-") && strings.Contains(matchWithoutComma, "$") && len(matchWithoutComma) != 0 {
+			return &matchWithoutComma, nil
+		}
+	}
+
+	return nil, fmt.Errorf("could not extract the key string uri from the repsonse body")
+
+}
+
+func extractUrlPartRegex(body string) (*string, error) {
+	matches := urlPartRegex.FindAllStringSubmatch(body, 1)
+	if len(matches) == 0 || len(matches[0]) == 0 {
+		return nil, fmt.Errorf("could not extract the url part from the response body")
+	}
+
+	return &matches[0][1], nil
+}
+
+func executeWithRetries(f solver, config cfConfig, challengeState cfChallengeState) (cfChallengeState, error) {
+	var err error
+
+	for i := 0; i < config.MaxRetries; i++ {
+		challengeState, err = f(challengeState)
+		if err == nil {
+			return challengeState, nil
+		}
+		if isNotRetryableError(err) {
+			return challengeState, err
+		}
+
+		time.Sleep(config.ErrorDelay)
+	}
+
+	return challengeState, err
+}
+
+func extractChallengeScript(body string) (*string, error) {
+	matches := scriptReg.FindAllStringSubmatch(body, -1)
+	if matches == nil {
+		return nil, fmt.Errorf("could not find a match for the script regex")
+	}
+
+	for _, m := range matches {
+		if strings.Contains(m[1], challengePlatform) {
+			match := m[1]
+
+			return &match, nil
+		}
+	}
+
+	return nil, fmt.Errorf("could not find a match for the script regex with 'challenge-platform' inside")
+
+}
+
+func isNewIUAMChallenge(response *http.Response) bool {
+	body, err := readAndCopyBody(response)
+	if err != nil {
+		return false
+	}
+	firstReg, err := regexp.MatchString(`cpo.src\s*=\s*[",']/cdn-cgi/challenge-platform/?\w?/?\w?/orchestrate/jsch/v1`, string(body))
+	if err != nil {
+		return false
+	}
+	secondReg, err := regexp.MatchString(`window._cf_chl_opt`, string(body))
+	if err != nil {
+		return false
+	}
+
+	return strings.Contains(response.Header.Get("Server"), "cloudflare") &&
+		(response.StatusCode == 429 || response.StatusCode == 403 || response.StatusCode == 503) &&
+		firstReg && secondReg
+
+}
+
+func isFingerprintChallenge(response *http.Response) bool {
+	if response.StatusCode == 429 {
+		body, err := readAndCopyBody(response)
+		if err != nil {
+			return false
+		}
+		if strings.Contains(string(body), "/fingerprint/script/") {
+			return true
+		}
+
+	}
+
+	return false
+}
+
+func isNewCaptchaChallenge(response *http.Response) bool {
+	body, err := readAndCopyBody(response)
+	if err != nil {
+		return false
+	}
+	firstReg, err := regexp.MatchString(`cpo.src\s*=\s*[",']/cdn-cgi/challenge-platform/?\w?/?\w?/orchestrate/.*/v1`, string(body))
+	if err != nil {
+		return false
+	}
+	secondReg, err := regexp.MatchString(`window._cf_chl_opt`, string(body))
+	if err != nil {
+		return false
+	}
+
+	return strings.Contains(response.Header.Get("Server"), "cloudflare") &&
+		(response.StatusCode == 403) &&
+		firstReg && secondReg
+}
+
+func isNotRetryableError(err error) bool {
+	if err == nil {
+		return false
+	}
+
+	var errno errNotRetryable
+	if errors.As(err, &errno) {
+		return true
+	}
+
+	return false
+}
diff --git a/profiles.txt b/profiles.txt
new file mode 100644
index 0000000..08d9b23
--- /dev/null
+++ b/profiles.txt
@@ -0,0 +1,335 @@
+// 3stripes api
+
+Transport Layer Security
+    TLSv1.3 Record Layer: Handshake Protocol: Client Hello
+        Content Type: Handshake (22)
+        Version: TLS 1.0 (0x0301)
+        Length: 512
+        Handshake Protocol: Client Hello
+            Handshake Type: Client Hello (1)
+            Length: 508
+            Version: TLS 1.2 (0x0303)
+            Random: fc271b3476961e856bb0274625cdfffcacdb5e598542039dec5d90186350a76d
+            Session ID Length: 32
+            Session ID: ab165f81fad423bcad340e03a1c87917d0e8983f76a1672185269782b51d2409
+            Cipher Suites Length: 28
+            Cipher Suites (14 suites)
+                Cipher Suite: Reserved (GREASE) (0x5a5a)
+                Cipher Suite: TLS_AES_128_GCM_SHA256 (0x1301)
+                Cipher Suite: TLS_AES_256_GCM_SHA384 (0x1302)
+                Cipher Suite: TLS_CHACHA20_POLY1305_SHA256 (0x1303)
+                Cipher Suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 (0xc02c)
+                Cipher Suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 (0xc02b)
+                Cipher Suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 (0xcca9)
+                Cipher Suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030)
+                Cipher Suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xc02f)
+                Cipher Suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 (0xcca8)
+                Cipher Suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA (0xc00a)
+                Cipher Suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA (0xc009)
+                Cipher Suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014)
+                Cipher Suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (0xc013)
+            Compression Methods Length: 1
+            Compression Methods (1 method)
+                Compression Method: null (0)
+            Extensions Length: 407
+            Extension: Reserved (GREASE) (len=0)
+                Type: Reserved (GREASE) (2570)
+                Length: 0
+                Data: <MISSING>
+            Extension: server_name (len=21)
+                Type: server_name (0)
+                Length: 21
+                Server Name Indication extension
+                    Server Name list length: 19
+                    Server Name Type: host_name (0)
+                    Server Name length: 16
+                    Server Name: api.3stripes.net
+            Extension: extended_master_secret (len=0)
+                Type: extended_master_secret (23)
+                Length: 0
+            Extension: renegotiation_info (len=1)
+                Type: renegotiation_info (65281)
+                Length: 1
+                Renegotiation Info extension
+                    Renegotiation info extension length: 0
+            Extension: supported_groups (len=12)
+                Type: supported_groups (10)
+                Length: 12
+                Supported Groups List Length: 10
+                Supported Groups (5 groups)
+                    Supported Group: Reserved (GREASE) (0x7a7a)
+                    Supported Group: x25519 (0x001d)
+                    Supported Group: secp256r1 (0x0017)
+                    Supported Group: secp384r1 (0x0018)
+                    Supported Group: secp521r1 (0x0019)
+            Extension: ec_point_formats (len=2)
+                Type: ec_point_formats (11)
+                Length: 2
+                EC point formats Length: 1
+                Elliptic curves point formats (1)
+                    EC point format: uncompressed (0)
+            Extension: application_layer_protocol_negotiation (len=14)
+                Type: application_layer_protocol_negotiation (16)
+                Length: 14
+                ALPN Extension Length: 12
+                ALPN Protocol
+                    ALPN string length: 2
+                    ALPN Next Protocol: h2
+                    ALPN string length: 8
+                    ALPN Next Protocol: http/1.1
+            Extension: status_request (len=5)
+                Type: status_request (5)
+                Length: 5
+                Certificate Status Type: OCSP (1)
+                Responder ID list Length: 0
+                Request Extensions Length: 0
+            Extension: signature_algorithms (len=24)
+                Type: signature_algorithms (13)
+                Length: 24
+                Signature Hash Algorithms Length: 22
+                Signature Hash Algorithms (11 algorithms)
+                    Signature Algorithm: ecdsa_secp256r1_sha256 (0x0403)
+                        Signature Hash Algorithm Hash: SHA256 (4)
+                        Signature Hash Algorithm Signature: ECDSA (3)
+                    Signature Algorithm: rsa_pss_rsae_sha256 (0x0804)
+                        Signature Hash Algorithm Hash: Unknown (8)
+                        Signature Hash Algorithm Signature: SM2 (4)
+                    Signature Algorithm: rsa_pkcs1_sha256 (0x0401)
+                        Signature Hash Algorithm Hash: SHA256 (4)
+                        Signature Hash Algorithm Signature: RSA (1)
+                    Signature Algorithm: ecdsa_secp384r1_sha384 (0x0503)
+                        Signature Hash Algorithm Hash: SHA384 (5)
+                        Signature Hash Algorithm Signature: ECDSA (3)
+                    Signature Algorithm: ecdsa_sha1 (0x0203)
+                        Signature Hash Algorithm Hash: SHA1 (2)
+                        Signature Hash Algorithm Signature: ECDSA (3)
+                    Signature Algorithm: rsa_pss_rsae_sha384 (0x0805)
+                        Signature Hash Algorithm Hash: Unknown (8)
+                        Signature Hash Algorithm Signature: Unknown (5)
+                    Signature Algorithm: rsa_pss_rsae_sha384 (0x0805)
+                        Signature Hash Algorithm Hash: Unknown (8)
+                        Signature Hash Algorithm Signature: Unknown (5)
+                    Signature Algorithm: rsa_pkcs1_sha384 (0x0501)
+                        Signature Hash Algorithm Hash: SHA384 (5)
+                        Signature Hash Algorithm Signature: RSA (1)
+                    Signature Algorithm: rsa_pss_rsae_sha512 (0x0806)
+                        Signature Hash Algorithm Hash: Unknown (8)
+                        Signature Hash Algorithm Signature: Unknown (6)
+                    Signature Algorithm: rsa_pkcs1_sha512 (0x0601)
+                        Signature Hash Algorithm Hash: SHA512 (6)
+                        Signature Hash Algorithm Signature: RSA (1)
+                    Signature Algorithm: rsa_pkcs1_sha1 (0x0201)
+                        Signature Hash Algorithm Hash: SHA1 (2)
+                        Signature Hash Algorithm Signature: RSA (1)
+            Extension: signed_certificate_timestamp (len=0)
+                Type: signed_certificate_timestamp (18)
+                Length: 0
+            Extension: key_share (len=43)
+                Type: key_share (51)
+                Length: 43
+                Key Share extension
+                    Client Key Share Length: 41
+                    Key Share Entry: Group: Reserved (GREASE), Key Exchange length: 1
+                        Group: Reserved (GREASE) (31354)
+                        Key Exchange Length: 1
+                        Key Exchange: 00
+                    Key Share Entry: Group: x25519, Key Exchange length: 32
+                        Group: x25519 (29)
+                        Key Exchange Length: 32
+                        Key Exchange: 746e752572376ffbeb472196d245f2f6dccdeada1772c04aa7f481ac09947811
+            Extension: psk_key_exchange_modes (len=2)
+                Type: psk_key_exchange_modes (45)
+                Length: 2
+                PSK Key Exchange Modes Length: 1
+                PSK Key Exchange Mode: PSK with (EC)DHE key establishment (psk_dhe_ke) (1)
+            Extension: supported_versions (len=7)
+                Type: supported_versions (43)
+                Length: 7
+                Supported Versions length: 6
+                Supported Version: Reserved (GREASE) (0x3a3a)
+                Supported Version: TLS 1.3 (0x0304)
+                Supported Version: TLS 1.2 (0x0303)
+            Extension: compress_certificate (len=3)
+                Type: compress_certificate (27)
+                Length: 3
+                Algorithms Length: 2
+                Algorithm: zlib (1)
+            Extension: Reserved (GREASE) (len=1)
+                Type: Reserved (GREASE) (10794)
+                Length: 1
+                Data: 00
+            Extension: padding (len=208)
+                Type: padding (21)
+                Length: 208
+                Padding Data: 000000000000000000000000000000000000000000000000000000000000000000000000…
+            [JA3 Fullstring: 771,4865-4866-4867-49196-49195-52393-49200-49199-52392-49162-49161-49172-49171,0-23-65281-10-11-16-5-13-18-51-45-43-27-21,29-23-24-25,0]
+            [JA3: b76d503360ae441d410a85a7f8d648ab]
+
+
+
+// adidasapp
+Transport Layer Security
+    TLSv1.3 Record Layer: Handshake Protocol: Client Hello
+        Content Type: Handshake (22)
+        Version: TLS 1.0 (0x0301)
+        Length: 512
+        Handshake Protocol: Client Hello
+            Handshake Type: Client Hello (1)
+            Length: 508
+            Version: TLS 1.2 (0x0303)
+            Random: 8f7f9fa0809ed524ed12eb47d2787570eb4d779d3f92f90077189fcf87dd2ac8
+            Session ID Length: 32
+            Session ID: 37613b69f52a35079e27f74e69f966b094c17c0975def9dbc10d857cbda485ed
+            Cipher Suites Length: 28
+            Cipher Suites (14 suites)
+                Cipher Suite: Reserved (GREASE) (0x7a7a)
+                Cipher Suite: TLS_AES_128_GCM_SHA256 (0x1301)
+                Cipher Suite: TLS_AES_256_GCM_SHA384 (0x1302)
+                Cipher Suite: TLS_CHACHA20_POLY1305_SHA256 (0x1303)
+                Cipher Suite: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 (0xc02c)
+                Cipher Suite: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 (0xc02b)
+                Cipher Suite: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 (0xcca9)
+                Cipher Suite: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030)
+                Cipher Suite: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xc02f)
+                Cipher Suite: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 (0xcca8)
+                Cipher Suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA (0xc00a)
+                Cipher Suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA (0xc009)
+                Cipher Suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014)
+                Cipher Suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (0xc013)
+            Compression Methods Length: 1
+            Compression Methods (1 method)
+                Compression Method: null (0)
+            Extensions Length: 407
+            Extension: Reserved (GREASE) (len=0)
+                Type: Reserved (GREASE) (19018)
+                Length: 0
+                Data: <MISSING>
+            Extension: server_name (len=25)
+                Type: server_name (0)
+                Length: 25
+                Server Name Indication extension
+                    Server Name list length: 23
+                    Server Name Type: host_name (0)
+                    Server Name length: 20
+                    Server Name: adidasapp.adidas.com
+            Extension: extended_master_secret (len=0)
+                Type: extended_master_secret (23)
+                Length: 0
+            Extension: renegotiation_info (len=1)
+                Type: renegotiation_info (65281)
+                Length: 1
+                Renegotiation Info extension
+                    Renegotiation info extension length: 0
+            Extension: supported_groups (len=12)
+                Type: supported_groups (10)
+                Length: 12
+                Supported Groups List Length: 10
+                Supported Groups (5 groups)
+                    Supported Group: Reserved (GREASE) (0x8a8a)
+                    Supported Group: x25519 (0x001d)
+                    Supported Group: secp256r1 (0x0017)
+                    Supported Group: secp384r1 (0x0018)
+                    Supported Group: secp521r1 (0x0019)
+            Extension: ec_point_formats (len=2)
+                Type: ec_point_formats (11)
+                Length: 2
+                EC point formats Length: 1
+                Elliptic curves point formats (1)
+                    EC point format: uncompressed (0)
+            Extension: application_layer_protocol_negotiation (len=14)
+                Type: application_layer_protocol_negotiation (16)
+                Length: 14
+                ALPN Extension Length: 12
+                ALPN Protocol
+                    ALPN string length: 2
+                    ALPN Next Protocol: h2
+                    ALPN string length: 8
+                    ALPN Next Protocol: http/1.1
+            Extension: status_request (len=5)
+                Type: status_request (5)
+                Length: 5
+                Certificate Status Type: OCSP (1)
+                Responder ID list Length: 0
+                Request Extensions Length: 0
+            Extension: signature_algorithms (len=24)
+                Type: signature_algorithms (13)
+                Length: 24
+                Signature Hash Algorithms Length: 22
+                Signature Hash Algorithms (11 algorithms)
+                    Signature Algorithm: ecdsa_secp256r1_sha256 (0x0403)
+                        Signature Hash Algorithm Hash: SHA256 (4)
+                        Signature Hash Algorithm Signature: ECDSA (3)
+                    Signature Algorithm: rsa_pss_rsae_sha256 (0x0804)
+                        Signature Hash Algorithm Hash: Unknown (8)
+                        Signature Hash Algorithm Signature: SM2 (4)
+                    Signature Algorithm: rsa_pkcs1_sha256 (0x0401)
+                        Signature Hash Algorithm Hash: SHA256 (4)
+                        Signature Hash Algorithm Signature: RSA (1)
+                    Signature Algorithm: ecdsa_secp384r1_sha384 (0x0503)
+                        Signature Hash Algorithm Hash: SHA384 (5)
+                        Signature Hash Algorithm Signature: ECDSA (3)
+                    Signature Algorithm: ecdsa_sha1 (0x0203)
+                        Signature Hash Algorithm Hash: SHA1 (2)
+                        Signature Hash Algorithm Signature: ECDSA (3)
+                    Signature Algorithm: rsa_pss_rsae_sha384 (0x0805)
+                        Signature Hash Algorithm Hash: Unknown (8)
+                        Signature Hash Algorithm Signature: Unknown (5)
+                    Signature Algorithm: rsa_pss_rsae_sha384 (0x0805)
+                        Signature Hash Algorithm Hash: Unknown (8)
+                        Signature Hash Algorithm Signature: Unknown (5)
+                    Signature Algorithm: rsa_pkcs1_sha384 (0x0501)
+                        Signature Hash Algorithm Hash: SHA384 (5)
+                        Signature Hash Algorithm Signature: RSA (1)
+                    Signature Algorithm: rsa_pss_rsae_sha512 (0x0806)
+                        Signature Hash Algorithm Hash: Unknown (8)
+                        Signature Hash Algorithm Signature: Unknown (6)
+                    Signature Algorithm: rsa_pkcs1_sha512 (0x0601)
+                        Signature Hash Algorithm Hash: SHA512 (6)
+                        Signature Hash Algorithm Signature: RSA (1)
+                    Signature Algorithm: rsa_pkcs1_sha1 (0x0201)
+                        Signature Hash Algorithm Hash: SHA1 (2)
+                        Signature Hash Algorithm Signature: RSA (1)
+            Extension: signed_certificate_timestamp (len=0)
+                Type: signed_certificate_timestamp (18)
+                Length: 0
+            Extension: key_share (len=43)
+                Type: key_share (51)
+                Length: 43
+                Key Share extension
+                    Client Key Share Length: 41
+                    Key Share Entry: Group: Reserved (GREASE), Key Exchange length: 1
+                        Group: Reserved (GREASE) (35466)
+                        Key Exchange Length: 1
+                        Key Exchange: 00
+                    Key Share Entry: Group: x25519, Key Exchange length: 32
+                        Group: x25519 (29)
+                        Key Exchange Length: 32
+                        Key Exchange: 6cf2db85f01e780341be3439213abaf70adf513a7b3195e4da13cb9f3d5fe94d
+            Extension: psk_key_exchange_modes (len=2)
+                Type: psk_key_exchange_modes (45)
+                Length: 2
+                PSK Key Exchange Modes Length: 1
+                PSK Key Exchange Mode: PSK with (EC)DHE key establishment (psk_dhe_ke) (1)
+            Extension: supported_versions (len=7)
+                Type: supported_versions (43)
+                Length: 7
+                Supported Versions length: 6
+                Supported Version: Reserved (GREASE) (0xbaba)
+                Supported Version: TLS 1.3 (0x0304)
+                Supported Version: TLS 1.2 (0x0303)
+            Extension: compress_certificate (len=3)
+                Type: compress_certificate (27)
+                Length: 3
+                Algorithms Length: 2
+                Algorithm: zlib (1)
+            Extension: Reserved (GREASE) (len=1)
+                Type: Reserved (GREASE) (39578)
+                Length: 1
+                Data: 00
+            Extension: padding (len=204)
+                Type: padding (21)
+                Length: 204
+                Padding Data: 000000000000000000000000000000000000000000000000000000000000000000000000…
+            [JA3 Fullstring: 771,4865-4866-4867-49196-49195-52393-49200-49199-52392-49162-49161-49172-49171,0-23-65281-10-11-16-5-13-18-51-45-43-27-21,29-23-24-25,0]
+            [JA3: b76d503360ae441d410a85a7f8d648ab]
+