Please ask questions ONLY in this topic.

Re: Sanddbox

Post by Defience on Tue Jul 28, 2009 3:32 pm
([msg=27602]see Re: Sanddbox[/msg])

bgonzales999 wrote:Sanddbox please read the forum in its entirety, if you have think about the directory you're accessing.

Also I can't figure out the cookie stealer part. I got to the message that says your cookie stealer appears to have worked but nothing seems to have happened. Also it says Nothing happened. Method or object not found. on the top left of the message. Finally, when I launch cookie editor it first shows me the cookie for the cookie stealer url. Am I supposed to put a hackthissite.org url in my javascript?


If your cookie stealer is in php than your script should point to the hosting site such as t35.com, so it knows where to send the cookie information to.
User avatar
Defience
Addict
Addict
 
Posts: 1277
Joined: Thu Jun 12, 2008 3:16 pm
Blog: View Blog (0)


Re: Sanddbox

Post by bgonzales999 on Tue Jul 28, 2009 7:06 pm
([msg=27607]see Re: Sanddbox[/msg])

Defience wrote:
If your cookie stealer is in php than your script should point to the hosting site such as t35.com, so it knows where to send the cookie information to.


Ok now I was able to get the cookie info but when I created a new cookie it didn't do anything. I did everything the same in the new cookie that was in the old PHPSESSID cookie, but I changed the name and content according to the one I stole. Did I do something wrong?
bgonzales999
New User
New User
 
Posts: 5
Joined: Thu Jul 23, 2009 4:29 pm
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by Defience on Tue Jul 28, 2009 9:33 pm
([msg=27608]see Re: Please ask questions ONLY in this topic.[/msg])

I'm not sure if I understand your question correctly but once you get the cookie information, you do not need to create an entirely new cookie from it, just modify your existing cookie ( while logged in to hts) to the new PHPSESSID, sorta like basic 10.
User avatar
Defience
Addict
Addict
 
Posts: 1277
Joined: Thu Jun 12, 2008 3:16 pm
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by bgonzales999 on Wed Jul 29, 2009 7:47 pm
([msg=27644]see Re: Please ask questions ONLY in this topic.[/msg])

Defience wrote:I'm not sure if I understand your question correctly but once you get the cookie information, you do not need to create an entirely new cookie from it, just modify your existing cookie ( while logged in to hts) to the new PHPSESSID, sorta like basic 10.


In the end I did have to create a new cookie, but now I'm stuck at the SQLite. I did the directory transversal and I'm seeing the two tables from the **.db*** but now I have no clue what SQL commands to use view the contents of the tables. Can someone post a link where I can learn about the commands I need?

EDIT: I finished after three days. Yay!
bgonzales999
New User
New User
 
Posts: 5
Joined: Thu Jul 23, 2009 4:29 pm
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by gregorian on Thu Mar 25, 2010 9:12 pm
([msg=37316]see Re: Please ask questions ONLY in this topic.[/msg])

There is no need to use User Agent XSS. You can directly find the page you want in the log. Was this alternative an intentional shortcut?
gregorian
New User
New User
 
Posts: 10
Joined: Thu Mar 25, 2010 9:04 pm
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by ___BARBARIAN___ on Sat Jun 26, 2010 2:42 pm
([msg=40828]see Re: Please ask questions ONLY in this topic.[/msg])

I stuck...gimmi a kick plz...................I am trying to edit/update users pass but geting reply user not exists....and if I trying to manipulate form nothing happens..plz help me....
___BARBARIAN___
New User
New User
 
Posts: 6
Joined: Mon Jun 21, 2010 2:17 am
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by andro1d on Wed Jul 14, 2010 9:56 am
([msg=41796]see Re: Please ask questions ONLY in this topic.[/msg])

Is this normal behavior? I'm getting this error when attempting to change what database is being executed against:

DBI connect('dbname=./db/../../../d*.d***e','',...) failed: unable to open database file(1) at dbdimp.c line 94

Why has no one else mentioned this :/
andro1d
New User
New User
 
Posts: 7
Joined: Fri Jul 09, 2010 11:39 pm
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by smartmalk on Sat Sep 11, 2010 11:49 am
([msg=45502]see Re: Please ask questions ONLY in this topic.[/msg])

andro1d wrote:Is this normal behavior? I'm getting this error when attempting to change what database is being executed against:

DBI connect('dbname=./db/../../../d*.d***e','',...) failed: unable to open database file(1) at dbdimp.c line 94

Why has no one else mentioned this :/


It's just a matter of setting the right path, it shouldn't take too long to get that right, there's only so many options you can try.

I completed this challenge but reading through these posts makes me wonder why people would be talking about XSS and User Agents for this challenge cause I needed none.
I guess it'd be interesting to see other ways to solve this.
smartmalk
New User
New User
 
Posts: 6
Joined: Sat Apr 03, 2010 2:19 pm
Blog: View Blog (0)


Awesome!

Post by Statixs on Mon Nov 01, 2010 3:49 pm
([msg=48430]see Awesome![/msg])

One fantastic level. For myself it felt awesome when i completed it, had to look less on the forum only for the final part!
For the HTS crew: Awesome mission.
Statixs
New User
New User
 
Posts: 4
Joined: Tue Jun 15, 2010 4:53 am
Blog: View Blog (0)


Realistic 11 without your own web hosting

Post by tullyvey on Tue Nov 02, 2010 1:48 pm
([msg=48476]see Realistic 11 without your own web hosting[/msg])

Firstly, a big thank you to the HTS team for this very fun challenge :D

I didn't want to set up my own site for stealing the cookie, so skipped this challenge. Then, in the Heartland school district site, I found one of the students had set up a guest book that served the purpose... 8-)
User avatar
tullyvey
New User
New User
 
Posts: 1
Joined: Tue Nov 02, 2010 1:41 pm
Blog: View Blog (0)


PreviousNext

Return to (Real 11) BudgetServ Web Hosting

Who is online

Users browsing this forum: No registered users and 0 guests