How to bypass Imperva/Incapsula “Let’s Get Your Identity Verified”?

1: You will need to find the Incapsula script url.

For exemple, incapsula is enabled in TicketMaster germany, open chrome devtool, go in network, and search for “.js?d=”. You will find an url: https://www.ticketmaster.de/tmol-dstlxhr.js?d=www.ticketmaster.de

2: Recover payload with api.

In the body of the api, add you url, leave cache false, and payload true.

3: Post the payload.

After posting to the api, you will get a payload.

For the last step, take the api response payload json string, and post to incapsula endpoint url. (https://www.ticketmaster.de/tmol-dstlxhr.js?d=www.ticketmaster.de)

Url: https://www.ticketmaster.de/tmol-dstlxhr.js?d=www.ticketmaster.de

Headers: Content-Type:application/json

Body: 

{
    "solution": {
        "interrogation": {
            "p": "xYqoUvd116Ku ...
    },
    "old_token": null,
    "error": null,
    "performance": {
        "interrogation": 216
    }
}

You will get the valid cookie, just add the cookie in your browser or your cookie jar, and post you initla request who was blocked.