A CAPTCHA is acronym for Completely Automated Public Turing tests to tell Computers and Humans Apart captcha is used for security purpose but there are many attacks which can break captchas. This paper proposes carp (captcha as graphical password) technique which is nothing but combination of captcha and a graphical password and it is click-based password. Carp saves from attacks like online guessing attacks relay attacks, shoulder surfing attacks, online dictionary attacks, human guessing attacks, etc. This carp technique is based on hard AI problems. This click-based technique requires SHA-1 and discretize centralization algorithm for better performance.