Please ask questions only in this topic.

Please ask questions only in this topic.

Post by -Pein-God- on Wed Apr 23, 2008 1:01 pm
([msg=1095]see Please ask questions only in this topic.[/msg])

Easy ....
It's say:
Message: You've probably heard of Yuppers Internet Solutions before. They started in 1997 and are now one of the top websites on the net. I was an intern at Yuppers for a time, but quit when I learned that the admins were selling user data and usage habits to advertisers while saying the opposite. Unfortunately, I couldn't get out of the building with any proof and don't have any high-level access. I do know, however, that much of the coding on their site was done by ameteurs and is probably insecure. Can you hack in and get some proof?

hm.... what "Poison Null Byte" is?
...go to google if you don't know ;)
if you learn what Poison Null Byte is you just need to change "something" to "something" and you get the file-list of the folder ;) ;)

EDITED BY FAITH

Please ask questions only in this topic.
Just to keep the forum neat, and hopefully your post more noticed.
Please help us to keep the forum clean by report trashy posts. :>
You may start a new post if you're making a tutorial. However, if the tutorials are similar, please do not make two.

I wish you best luck with this mission, and hope you enjoy it.

<3 faith.
-Pein-God-
New User
New User
 
Posts: 8
Joined: Wed Apr 23, 2008 8:15 am
Blog: View Blog (0)


Re: How to start Realistic 14?

Post by sk8linkinhr on Thu Apr 24, 2008 7:57 am
([msg=1189]see Re: How to start Realistic 14?[/msg])

yea...you are right ;) ;)
sk8linkinhr
New User
New User
 
Posts: 6
Joined: Wed Apr 23, 2008 4:35 pm
Blog: View Blog (0)


Re: How to start Realistic 14?

Post by _steAlth_ on Sat Apr 26, 2008 12:32 pm
([msg=1411]see Re: How to start Realistic 14?[/msg])

'm stuck please help

-spoiler removed-
_steAlth_
New User
New User
 
Posts: 4
Joined: Sat Apr 26, 2008 12:05 pm
Blog: View Blog (0)


Re: How to start Realistic 14?

Post by _steAlth_ on Sat Apr 26, 2008 2:28 pm
([msg=1417]see Re: How to start Realistic 14?[/msg])

Well solved it!!! :D
_steAlth_
New User
New User
 
Posts: 4
Joined: Sat Apr 26, 2008 12:05 pm
Blog: View Blog (0)


Re: How to start Realistic 14?

Post by Nines on Sun Apr 27, 2008 5:51 pm
([msg=1547]see Re: How to start Realistic 14?[/msg])

Is it really necessary to post spoilers?
User avatar
Nines
Poster
Poster
 
Posts: 191
Joined: Sun Apr 13, 2008 5:57 pm
Blog: View Blog (0)


Re: How to start Realistic 14?

Post by s3klyma on Wed Apr 30, 2008 10:04 pm
([msg=1811]see Re: How to start Realistic 14?[/msg])

so...
I've found something
And the codes just don't seem to fit.
I'm just starting learning PHP, so I don't know it all, but..
commands like
print, read, and my, I'm not farmiliar with, I figure
they are just like
fopen,
echo,
and just a regular variable.. But I'm not positive.
Please tell me if I'm correct, and if I'm not,
please post links to resources where I could learn
about what I'm making these mistakes


Thanks
s3klyma
New User
New User
 
Posts: 16
Joined: Tue Apr 22, 2008 3:19 pm
Blog: View Blog (0)


Re: How to start Realistic 14?

Post by poseidon on Sun May 04, 2008 5:00 am
([msg=2053]see Re: How to start Realistic 14?[/msg])

s3klyma, think about the function validkey. You can see it processes the ID you provide, and then compares it in an IF statement. Could you somehow reverse or bruteforce this function... :lol:
poseidon
New User
New User
 
Posts: 1
Joined: Sun Apr 20, 2008 12:06 am
Blog: View Blog (0)


Re: How to start Realistic 14?

Post by shaddow on Thu May 22, 2008 1:25 pm
([msg=3024]see Re: How to start Realistic 14?[/msg])

s3klyma - your code doesn't seem to fit because this is real 14, and that link you provided says "realistic/11/". That might get you one step closer. XD
shaddow
New User
New User
 
Posts: 1
Joined: Wed May 21, 2008 2:22 pm
Blog: View Blog (0)


Poison Null Byte...moving on

Post by jourdie on Sat May 24, 2008 3:36 am
([msg=3133]see Poison Null Byte...moving on[/msg])

Hey i learnt what perl's poison NULL byte tweak is...Fairly interesting really and this:
http://insecure.org/news/P55-07.txt
is a very good read.

Ok moving on...I have located our little news.cgi/search.cgi source...and still trying to make terms of it...
Im assuming...that we need access to the admin's mail account...or at least need access to a logged in account so i can access other areas...

Anyway, enough of this...i just really wanted to know whether i'm looking in the right spot..."No Spoilers Plz" and whether this source has clues into achieving a user/password

Thanks in advance

b1nd/jourdie
This is a paradox: I always lie
This is a statement: You're a fag!
jourdie
New User
New User
 
Posts: 18
Joined: Sun May 04, 2008 7:23 am
Blog: View Blog (0)


Re: Poison Null Byte...moving on

Post by jourdie on Sat May 24, 2008 3:53 am
([msg=3135]see Re: Poison Null Byte...moving on[/msg])

Oh btw..i found some other scripts on the site, mainly ones that add to my intel on the site...
Is there any1 that would allow me to PM my findings to...? Instead of having to post all spoilers etc...is painful for others who want to learn..

Thanks in advance

b1nd/jourdie
This is a paradox: I always lie
This is a statement: You're a fag!
jourdie
New User
New User
 
Posts: 18
Joined: Sun May 04, 2008 7:23 am
Blog: View Blog (0)


Next

Return to (Real 14) Yuppers Internet Solutions

Who is online

Users browsing this forum: No registered users and 0 guests