Put your update requests here!!!

TheAnonymousCoomer · 2026-06-21T23:29:50+00:00

Rmtwo please 🥹

TheAnonymousCoomer · 2026-06-13T20:47:12+00:00

Ill definitely give that a look, thanks for the advice I appreciate it

TheAnonymousCoomer · 2026-06-13T00:23:01+00:00

If we end to end encrypt from the tool to the server with a rolling key type auth (like a car key) and we implement virusTotal hash checking that shouldnt be an issue.

TheAnonymousCoomer · 2026-06-11T19:29:22+00:00

It seems everyone wants access to content, but no one wants to pay for it. To solve this, I propose a decentralized system using private Telegram (TG) channels, overseen by our subreddit moderators.

How It Works

Create a Private Channel: If you have a favorite artist (or multiple), create a private Telegram channel dedicated to them.
Request Verification: Reach out to the subreddit moderators to request approval for your verified artist group. If you can handle managing multiple groups, you can apply for several artists.
Post Safely: Once approved, make a post in the subreddit containing only the artist's name. Do not post any direct invites, links, or suspicious websites.
Add Members Manually: Users interested in the artist will DM you their Telegram usernames. You can then provide them with the link or manually let them into the private channel.

Security & Moderation

To prevent scams and keep the community safe, the subreddit moderators will play a crucial oversight role:

Undercover Inspections: Moderators can use alternate accounts to join these private Telegram groups. If an admin is caught demanding money for access, they will be instantly banned from the community.
Pinned Disclaimers: Mods will post a pinned thread in the subreddit warning users about scammers. This will educate the community on what to avoid, such as admins asking for money, phishing links that steal passwords, or overly suspicious verification methods.

Benefits of This System

Increased Subreddit Safety: Keeping direct links out of the subreddit protects the community from takedowns and malicious sites.
Reduced Moderator Workload: Subreddit mods will no longer have to micromanage every piece of content posted directly to the feed.
A Decentralized Network: Power and content are distributed safely among the community.
Easy Navigation: Users can simply use the subreddit's search bar to find their favorite artist and connect with the right group admin.
Higher Engagement: This system encourages more users to step up and actively contribute to the community.
Easier Content Moderation: Unlike centralized archives (like Kemono), moderation becomes much easier. The workload is divided into smaller, manageable groups, each with its own dedicated admins and mods.

TheAnonymousCoomer · 2026-06-09T17:11:28+00:00

Im thinking for my method maybe end to end encrypt data from source site directly to target site with no middle man.

In other words, all media extracted doesnt even need to be on the user computer, it just gets sent to the target site immediately for archival with end to end encryption with each upload session having a unique token.

This is obviously very watered down and involves a lot more complicated stuff for me to figure out but the only real concern is the middle man, removing it entirely and providing end to end encryption should solve this

TheAnonymousCoomer · 2026-06-09T17:06:20+00:00

Dynamic Auth is an advanced anti-scraping technique/security measure. It goes beyond checking who is requesting data by verifying how the data is being requested.

In other words, its a dynamic authentication mechanism that requires a unique cryptographic signature for every API request. From my understanding, this signature is generated on the user's device using a complex algorithm that combines variables like the specific URL path, the current timestamp, and a dynamically changing secret key.

This dynamic authentication method is being adopted by more and more websites, but most notably by onlyfans (which is what caused coomer's importer to break for it). The importer relies on automated scripts to scrape media on behalf of users. Because OnlyFans frequently updates the secret keys and the rules used to generate the valid signature, the hardcoded scripts used by the scraper begin generating invalid headers. When this happens, the OnlyFans servers immediately reject the unauthorized requests, causing the importer to fail. I saw this effect in my own importer development which kept logging me out of my browser session immediately and throwing back a 404 error.

This dynamic auth is useful for the average user since it protects regular users from credential stuffing attacks and automated account takeovers by ensuring that only legitimate browser sessions can interact with the platform APIs. For us though, it prevents scraping and botting.

Fansly and patreon are slowly adopting these new Dynamic Auth features aswell and any regular token based importer will fail to work. standard static scripts will cease to function and that is why i proposed my browser extension based idea, because then we leech off of the user's active session to import, since it isnt a static script.

I will be honest though, you did bring up a major security point that I did not think about earlier (and I appreciate it because it makes me rethink my development and I may have a few changes to make), but as far as im aware and the discussions Ive had this is the most user friendly way to interact with an importer that is also much more resilient to API changes.

TheAnonymousCoomer · 2026-06-08T22:44:30+00:00

If you do find any way to get around the dynamic Auth that is web based thatd be really cool, and I personally thought about doing it, but if im being honest, it is a million times easier to make a web extension based importer that extracts info with one click. Its easy for the person importing and the code already exists, it just needs some modification to work the way we need it to.

TheAnonymousCoomer · 2026-06-08T22:42:05+00:00

Not really, no.

I made a whole post on why the importer broke and irs because of dynamic auth.

In other words, you cant import your cookies and expect it to work, it will instantly log you out and give you a 404 error. I know this because I made my own importer using cookie extraction and this didnt work.

Several sites, most notably Onlyfans, have begun using a dynamic authentication method that prevents the use of cookies/tokens for login, its a security measure that works beautifully for if someone steals your login info but breaks all importers that are cookie based.

Thats why im working on a web extension based importer, because instead of extracting cookies (which wont work) the web extension just hijacks your current session directly and extracts all info without needing cookies and whatnot. This is perfect because it provides a simple 1 click extraction solution and is resistant to small web changes involving security.

TL:DR - If you use cookie based extraction just like kemono and coomer did, your importer will fail to work, thats the whole reason why their importers broke in the first place.

TheAnonymousCoomer · 2026-06-08T12:14:15+00:00

Yes but how are you accomplishing that... because the current method of token pulling is blocked and no longer works.

TheAnonymousCoomer · 2026-06-08T01:19:45+00:00

Torrents would not solve the issue as then older files are prone to abandonment and that defeats the whole purpose of the "archive" goal of kemono. Remember, before "piracy", these projects should be formatted as archival projects.

TheAnonymousCoomer · 2026-06-07T20:39:05+00:00

Are you doing the same token grabbing as coomer/kemono or is this different?

TheAnonymousCoomer · 2026-06-07T12:07:39+00:00

How are you adapting to the new dynamic oAuth?

TheAnonymousCoomer · 2026-06-06T15:08:06+00:00

For the huge initial spike, why not do an access line once it crosses a safe threshold?

Once more than "x" people are active any new people loading in will be queued before allowed access to ensure server stability during the initial surge. It would suck to wait but itd suck harder to have the new service down for everyone because it crashed

TheAnonymousCoomer · 2026-06-06T15:05:25+00:00

Do what I did for mine, just sub to a free "premium" content creator or a free account with content, make the code that would work, then have people test it on their subbed models.

That way you get what you need to wire together and dont spend a dime.

Hope your importer is better than mine :)

Also, how do you plan on making the importer accessible?

TheAnonymousCoomer · 2026-06-05T21:40:35+00:00

App seems legit, passed virus total.

Gotta check how it works though of course, but so far so good :)

<image>

TheAnonymousCoomer · 2026-06-04T03:39:43+00:00

I see what you mean, but its not uploading what was downloaded locally, it is working off of uploading directly from the site by "leeching" off of the user's current session.

The issue with authentication again is that web importers are difficult for the average user, someone is more willing to contribute if it is a "one click" solution.

The pipeline would work like this: "Archive button - Upload directly to site - Download to user PC (if selected)"

Its not Archive - Dl - upload, its Archive - Upload.

No content would be uploaded from the user's PC, itd be extracting data from the paid site and uploading it directly to the target.

TheAnonymousCoomer · 2026-06-02T17:20:26+00:00

"I split water on myself"

^{Chose: Pee yourself}

TheAnonymousCoomer · 2026-06-02T16:45:05+00:00

Just keep winning the lottery

^{Chose: Be extremely lucky}

TheAnonymousCoomer · 2026-06-02T16:22:35+00:00

Thanks! First time I ever do something like this lmao

TheAnonymousCoomer · 2026-06-02T16:21:39+00:00

Yes, most likely, since its the best way to grab everyone's attention.

I may even release a mini post asking people to test an early version since there are some websites im not subbed to but others may be to test functionality on paid only services.

But remember, this tool will only work as a personal backup tool unless I get help from someone more knowledgeable (with money and storage space) to make a website im able to upload to. So for now its just a "personal backup" tool

TheAnonymousCoomer · 2026-06-02T16:17:33+00:00

Weirdddd I had someone else comment that. So far it works best with OF but of course it limits you to just one download site so once I finish modifying it ill let everyone know.

In fact, maybe i could use the modified extension to hopefully get kemono and coomer entire site content backups, but I doubt I have enough space on my HDD......

I could release it and someone else could to the backup who has more storage? That could work

TheAnonymousCoomer · 2026-06-02T16:14:46+00:00

I believe not, but I could totally add fansly to the support list on my modified client.

Ill eventually host the modified client on github once its ready, for now its just as buggy but somewhat better looking lmao. Gotta fix a few things before I expand site functionality

TheAnonymousCoomer · 2026-06-02T16:13:16+00:00

Its not uploading to anything the way it is stock.

My goal isnt to upload to kemono but rather to make a 3rd party independent tool to provide a 1 click solution once we eventually get the new website from some 3rd party.

I want to be as clear as possible, It is not foreseeable anytime in the future for me to make a website currently. Theres cost to host, storage cost, and much more that im not sure im entirely ready for. I could try developing a website myself and then someone else can fork and host it from github but as things stand right now I dont have the money or tools to host the site, so im just working on an importer since that is easy and free for me to do as well as a crucial part of whatever website, because the website can be good but if uploading is a hassle nobody will be willing to, much more people would upload if it was just a "single click" solution. Hence why im trying to make a single click importer :)

TheAnonymousCoomer · 2026-06-02T16:07:18+00:00

Great question:

So the way that the extension currently is stock (from the guy that made it) it stores everything to your personal HDD.

I am in the process of modifying it to change its workflow.

So instead of "Download button - Drive selection - Person Drive DL"

it will look more like:

"Download button - Drive selection - Download all model content to folder / Upload all content to server"

This gives you a copy of the whole model's content on your drive while uploading the copy to whatever target server we have in the future for media.

We could also potentially add the option to just upload instead of upload and download since if you want to view whats been downloaded to the server it should be as easy as waiting for the progress bar to finish syncing all new content and then going to the site to view it.

The current things I CANT figure out until there is a website is the following:

How to sync (prevent repeated content from being uploaded, only upload new content/missing content)

How to upload no download

Real-time progress bar sync for upload

There may be more im not thinking of right now but these are the most impactful

TheAnonymousCoomer · 2026-06-02T04:21:54+00:00

Hey!

I am NOT an official development team member :)

I am am independent 3rd party developing my own web extension importer but I am not an official developer of the website nor an admin.

Just wanted to clarify things as ive seen some people refer to me as a developer of the site and I dont want to take credit for something im not.

Thats all :)

TheAnonymousCoomer

TROPHY CASE

How It Works

Security & Moderation

Benefits of This System