Steam CD Key Batch query

index.js

/* jshint esversion: 6*/
const assert = require('assert');
const async = require('async');
const fs = require('fs');
let request = require('request');
const FileCookieStore = require('tough-cookie-filestore');

if (!fs.existsSync('cookies.json')) { fs.writeFileSync('cookies.json', '{}'); }
let j = request.jar(new FileCookieStore('cookies.json'));
request = request.defaults({ jar : j });

// Fill cookie string here by grabbing it from a request in Chrome
// Should look like 'sessionid=c7...; steamLogin=2...; ...'
let cookies_from_browser = 'fill=me; in=please'; // Make sure not to check this in
let cookie_url = 'https://partner.steamgames.com';
cookies_from_browser.split('; ').forEach(function (cookie) {
  j.setCookie(cookie, cookie_url);
});

function queryKeys(next) {
  let keys = fs.readFileSync('keys.csv', 'utf8').split('\n').map(function (s) {
    return s.trim();
  });
  let out = [];
  async.eachSeries(keys, function (key, next) {
    if (!key) {
      console.log('');
      out.push('');
      return void next();
    }
    let retries = 0;
    function doAttempt() {
      let url = `https://partner.steamgames.com/querycdkey/cdkey?cdkey=${key}&method=Query`;
      request({
        url: url,
        headers: {
          'user-agent': 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.97 Safari/537.36',
        },
      }, function (err, resp, body) {
        if (err) {
          throw err;
        }
        let result = body.split('<h2>Activation Details</h2>')[1];
        if (!result && !err) {
          if (retries < 5) {
            ++retries;
            console.log(`Error, retrying ${retries}...`);
            return doAttempt();
          }
          fs.writeFileSync('out.html', body);
          console.log('Error quering CD Key, check out.html to see the response returned from Steamworks,');
          console.log('  if it is a login page, your cookies_from_browser string is probably invalid');
          process.exit(-1);
        }
        assert(result);
        result = result.split('</table>')[0];
        result = result.match(/<td>.*<\/td>/gu);
        result = result.map(function (line) {
          return line.replace(/<[^>]*>/gu, '');
        });
        let line = [key, (result[0] === 'Activated') ? '"' + result[1] + '"' : result[0]].join('\t');
        console.log(line);
        out.push(line);
        return next();
      });
    }
    doAttempt();
  }, function (err) {
    fs.writeFileSync('out.tsv', out.join('\n'));
    next(err);
  });
}

queryKeys(function (err) {
  if (err) {
    throw err;
  } else {
    console.log('Done.');
  }
});

package.json

{
  "dependencies": {
    "async": "^2.4.1",
    "request": "^2.81.0",
    "tough-cookie-filestore": "0.0.1"
  }
}

Instructions for use:

• Download and install Node.js
• Save these two files in a folder somewhere (click Download Zip at the top and extract, or right click on the two Raw buttons, choose Save As)
• Use the Chrome developer tools to copy the cookie string from an authenticated request on the Steamworks API, and paste it into index.js
  • You can get the cookie string by logging in, opening the Developer Tools tab, then clicking any link within Steamworks (such as the one to the Query CD Keys page), then clicking on the Network tab in the Developer Tools, clicking on the first request, click the Headers tab, and in the Request section, copy the giant string that comes after Cookie:, should start with sessionid=blah.
  • Make sure to copy the whole string (wraps to about 8 lines for me, mine ends with the pair steamLoginSecure=blah)
  • If Chrome dev tools says "provisional headers only", you're looking at a request that hit your cache, try looking at a different request (the first request when clicking a link in the Steamworks site should generally not hit the cache)
  • Paste this string in index.js as the value for where it says let cookies_from_browser = 'fill=me; in=please';
  • Note: This cookie string is basically a temporary copy of your password, do not share it with anyone
• Place your keys, one per line, in a new text file keys.csv
• From a command line, within this folder, run npm install
• Run node index.js
• Output is written to the console as well as out.tsv for importing

Any problems or questions? Please contact Jimbly on Steam or GitHub.

Find this script useful? Buy my game on Steam.

Trouble finding your cookie string, look here:

Just wanted to say thank you, helping me sort 55k+ steam keys right now :)

@BrandyBuizel Glad to help, and glad to hear it's still working =)

Great work! :)

There is easier way that don't need you to install anything, and it's derived of this gist here. My revision only needs you to edit the JS code and place in into DevTools console directly. No login cookies and things like that. https://gist.github.com/petersvp/270f7d5d7d548448f4897586a0d389c0