you cant bypass it you would have to emulate the steps taken by the browser to generate the correct hash by sending multiple request in the correct order, but the problem is , is that the website has put this security in place for a reason, the reason being they don't want botted applications accessing it, so i don't really want to explain in depth what you need to do