Acunetix - Scan Your Website For Vulnerabilities
[Advertise With HackThisSite.org]

Hack This Site - Forums Index

Please ask questions ONLY in this topic.

Post a reply

Re: Please ask questions ONLY in this topic.

Post by -Ninjex- on Thu Feb 21, 2013 7:29 am
([msg=73935]see Re: Please ask questions ONLY in this topic.[/msg])

Snipeon wrote:
fashizzlepop wrote:You can't reverse hashes. That's the point of the algorithm. You'll have to brute force it.


then... is there anyway to gain access without the password? like reverse engineering the whole site?(i'm still curious bout the reverse engineering part in the mission description)


You don't need to find another access point. You need to bruteforce the password. It's not very hard to bruteforce hashes honestly. Go look at John The Ripper...
Spreading knowledge just once a day, can help keep the script kiddies away.

Don't ever mistake
my silence for ignorance,
my calmness for acceptance,
or my kindness for weakness.
User avatar
-Ninjex-
Contributor
Contributor
 
Posts: 659
Joined: Sun Sep 02, 2012 8:02 pm
Blog: View Blog (0)

Re: Please ask questions ONLY in this topic.

Post by Snipeon on Fri Feb 22, 2013 3:07 am
([msg=73968]see Re: Please ask questions ONLY in this topic.[/msg])

-Ninjex- wrote:
Snipeon wrote:
fashizzlepop wrote:You can't reverse hashes. That's the point of the algorithm. You'll have to brute force it.


then... is there anyway to gain access without the password? like reverse engineering the whole site?(i'm still curious bout the reverse engineering part in the mission description)


You don't need to find another access point. You need to bruteforce the password. It's not very hard to bruteforce hashes honestly. Go look at John The Ripper...


No no no no, i've already downloaded cain and finished the mission. as i've said, i'm CURIOUS bout whether there's any way to reverse engineer the site to allow access. that's what i'm interested in. not completing the mission.
Nobody is ever a master; we are all just noobs who must keep on learning.
User avatar
Snipeon
New User
New User
 
Posts: 27
Joined: Sat Feb 02, 2013 4:32 pm
Blog: View Blog (0)

Re: Please ask questions ONLY in this topic.

Post by -Ninjex- on Fri Feb 22, 2013 12:10 pm
([msg=73977]see Re: Please ask questions ONLY in this topic.[/msg])

Snipeon wrote:No no no no, i've already downloaded cain and finished the mission. as i've said, i'm CURIOUS bout whether there's any way to reverse engineer the site to allow access. that's what i'm interested in. not completing the mission.


I'm pretty sure reverse engineering is basically just like footprinting to gain detailed information on how something works. Using the term of footprinting doesn't actually do anything. Say something such as: I wonder if you can find exploitable vulnerabilities in the website whcih allow a different access point. My answer to that would be yes, possibly. Although the devs did create these missions sort of one way so that you can't really hack hackthissite, but it is a possibility. On realistic mission 11, after reading the forums, I completed the mission in a slightly similar way, yet it was different and much faster.
Spreading knowledge just once a day, can help keep the script kiddies away.

Don't ever mistake
my silence for ignorance,
my calmness for acceptance,
or my kindness for weakness.
User avatar
-Ninjex-
Contributor
Contributor
 
Posts: 659
Joined: Sun Sep 02, 2012 8:02 pm
Blog: View Blog (0)

Re: Please ask questions ONLY in this topic.

Post by Snipeon on Fri Feb 22, 2013 9:50 pm
([msg=73999]see Re: Please ask questions ONLY in this topic.[/msg])

hmm... interesting... teach me master! actually, don't bother, just hint me. i like finding the answers myself. on a side note, yesterday, while i was think bout this mission, i wondered whether there's actually a way to trick the site into skipping out on hashing the password, meaning we directly just submit the hash to be compared. is it doable?
Nobody is ever a master; we are all just noobs who must keep on learning.
User avatar
Snipeon
New User
New User
 
Posts: 27
Joined: Sat Feb 02, 2013 4:32 pm
Blog: View Blog (0)
Previous
Post a reply

Return to (Real 5) Damn Telemarketers!

Who is online

Users browsing this forum: No registered users and 0 guests

Disclaimer :
HackThisSite does not support illegal activities.
The management of this board is not responsible for the content of any external internet sites.
Powered by phpBB © 2000-2009 phpBB Group
Carbon Style By Echo -=Designs By Echo=- © 2007 Echo
Administration Control Panel