mCaptcha uses SHA256 based proof-of-work(PoW) to rate limit users.

If someone wants to hammer your site, they will have to do more work to send requests than your server will have to do to respond to their request.

NOTE: 0.1.x is out, expect breaking changes as ergonomics and performance is improved. Checkout changelog for changes and migration pointers. Breaking changes will be frequent through 0.1.x.

Why use mCaptcha?

• Free software, privacy focused
• Seamless UX - No more annoying captchas!
• IP address independent(sort of) - your users are behind a NAT? We got you covered!
• Automatic bot throttling
• Resistant to replay attacks - bye-bye captcha farms!

Demo

Demo servers are available at:

• https://demo.mcaptcha.org/
• https://demo2.mcaptcha.org/ (runs on a Raspberry Pi!)

Core functionality is working but it's still very much work-in-progress.

Feel free to provide bogus information while signing up(project under development, database frequently wiped).

Self-hosted:

Please refer to mCaptcha/mCaptcha for instructions.

Documentation

• docs.rs
• master-branch
• All published versions

Usage

mCaptcha is made up of three components:

1. Front-end library

We have a WASM library now, Android and iOS libraries soon

2. Back-end library

We have Rust library, other languages will have support soon

3. Rate limiting service

Under development.

A paid, managed service will be made available soon but I(@realaravinth) encourage you guys to self-host. Go decentralisation!

Contributing

yes please!

Funding

NLnet

2023 development is funded through the NGI0 Entrust Fund, via NLnet. Please see here for more details.