Please ask questions ONLY in this topic.

Re: Please ask questions ONLY in this topic.

Post by Phantom Wolf on Tue Mar 15, 2011 3:09 pm
([msg=55086]see Re: Please ask questions ONLY in this topic.[/msg])

You really shouldn't quote any spoilers, it makes it harder for a mod to remove them
"Well it isn't my fault. I shouldn't have been allowed to do something to crash it." "No, you shouldn't have been allowed to buy a computer in the first place"
Phantom Wolf
Poster
Poster
 
Posts: 271
Joined: Wed Mar 03, 2010 8:45 pm
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by insomaniacal on Tue Mar 15, 2011 4:40 pm
([msg=55088]see Re: Please ask questions ONLY in this topic.[/msg])

Phantom Wolf wrote:You really shouldn't quote any spoilers, it makes it harder for a mod to remove them


Sudo +1 && <3.
It's not who votes that counts, it's who counts the votes
insomaniacal.blog.com
User avatar
insomaniacal
Addict
Addict
 
Posts: 1210
Joined: Sun May 24, 2009 10:21 am
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by trandoanhung1991 on Fri Apr 22, 2011 12:56 pm
([msg=56604]see Re: Please ask questions ONLY in this topic.[/msg])

Woo. I'm done.

Here are some pointers:

Make your script VERY simple. Pretend you have a cookie stealer and just put in the XSS code. It shouldn't be more than 4-5 lines.

Clearing the logs is super easy. Think back to basic 1. And explore the site a bit. Then think about how the email subscription works.
trandoanhung1991
New User
New User
 
Posts: 5
Joined: Sat Jun 06, 2009 7:39 am
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by Sawny1337 on Mon Apr 25, 2011 5:27 am
([msg=56674]see Re: Please ask questions ONLY in this topic.[/msg])

eljonto wrote:
DamegedSpy wrote:Learn some JS and variables ;)
Mainly the document.'something' ones.


Or the window.'something' ones


Thanks, that is what the script is looking for..
Now i have done this mission :)


Devloper note: preg_match("/...window.../"); should be preg_match("/...(window|document).../"); I think...
Sawny1337
New User
New User
 
Posts: 7
Joined: Sat May 08, 2010 2:56 am
Blog: View Blog (0)


XSS in the wider sense...

Post by gernot on Tue May 03, 2011 5:17 pm
([msg=56937]see XSS in the wider sense...[/msg])

I found this one frustrating, as well.

For a start, the hints about XSS are misleading. Yes, it's XSS, but not in the strict sense. 'Javascript injection' would be more accurate. No PHP required.

Also, I agree with others on this thread that some kind of feedback when experimenting with the javascript injection would be nice.

Also, also, I agree that having to use window instead of document at one place, blows.

Finally, not sure if this has been mentioned before, or if it's a spoiler, but think about when/where the site writes anything to disk that you can then check. How could you exploit that? And I think it's fair to assume that register_globals is 'on' on this site ;)

Oh, and it's fair to assume that the boss clicks on all the links you send him...
gernot
New User
New User
 
Posts: 2
Joined: Sat Apr 30, 2011 4:18 am
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by Bitware on Wed May 25, 2011 8:35 am
([msg=57726]see Re: Please ask questions ONLY in this topic.[/msg])

I've done everything I should do in changing username, password and intID, however it continues to say that I'm not an administrator.
What do?
Bitware
New User
New User
 
Posts: 1
Joined: Thu May 12, 2011 2:13 pm
Blog: View Blog (0)


Frustrating Like Nothing Else

Post by Rorroh on Sun Oct 02, 2011 10:34 pm
([msg=62014]see Frustrating Like Nothing Else[/msg])

OMFG.

I got to the end of page 8. I know my JavaScript, I know my XSS. I figured out the answer at page 6 thanks to haha01haha01,
haha01haha01 wrote:you need to use window instead of document.

but I still couldn't get it to work. Then I went to a tab I still left open (Do some Google searches for Freakwolfe; he was mentioned in another thread.) and tried something that seemed to jump out to say "THIS WILL WORK." Copy, paste, nothing. Edit a single thing,
It's beyond the scope of this mission to check the XSS. So, assume you got this cookie:[cookie data]


That brings me to the next bit: The code seems to need to be EXACT, but the URL is arbitrary; you're given the cookie on the "Private Message" page.

The biggest thing that hinders, though, is the code itself. Do a little research on JavaScript "windows." That's all I can say.

If you've gone through all of this thread's pages so far and still can't get it, good luck! It's an easy concept but extremely frustrating to figure out. I'd say more about it but I'm not entirely sure what constitutes a "spoiler" and I don't want to push it too far. If you need more, message me!
Rorroh
New User
New User
 
Posts: 1
Joined: Mon Aug 01, 2011 2:29 am
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by conscience on Mon Oct 03, 2011 12:15 pm
([msg=62019]see Re: Please ask questions ONLY in this topic.[/msg])

I'm not sure you haven't done so yet by giving pieces of info on where to look at, dude.
Let him who has understanding recount the number of the beast, for it is a human number: His number is 0x029A.
conscience
Poster
Poster
 
Posts: 248
Joined: Thu Jan 08, 2009 9:05 pm
Location: 127.0.0.1
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by Eimeidee on Wed Dec 07, 2011 10:17 pm
([msg=63232]see Re: Please ask questions ONLY in this topic.[/msg])

Hugely helpful link, if it was posted in the forums i didn't see it.

http://www.hackthissite.org/articles/read/1006
Eimeidee
New User
New User
 
Posts: 3
Joined: Mon Nov 28, 2011 6:27 pm
Blog: View Blog (0)


Re:realistic 8 vs realistic 9

Post by sdition on Thu Dec 29, 2011 3:38 am
([msg=63459]see Re:realistic 8 vs realistic 9[/msg])

I found there are sth in common in both realistic 8 and realistic 9. I just change the username using javascript injection in cookie to make money transfer to another account. But in realistic 9, I am using XSS to change username, pwd and intID to finish this mission.

So, what's the different form the two methods on both missions? Why I can just change name and ignore pwd in realistic 8 but have to change more fields in realistic 9?
sdition
New User
New User
 
Posts: 1
Joined: Thu Dec 29, 2011 3:27 am
Blog: View Blog (0)


PreviousNext

Return to (Real 9) CrappySoft

Who is online

Users browsing this forum: No registered users and 0 guests