Hack This Site (TOR .onion HTTPS - HTTP) - IRC - Discord - Forums - Store - URL Shortener - CryptoPaste   ---   Like Us - Follow Us - Fork Us
Hack This Site
Support HackThisSite - Advertise with us!
"The heresy of one age becomes the orthodoxy of the next." --Helen Keller

Realistic Mission 14 updated Tutorial
Published by: liuyuan, on 2007-06-28 00:07:21
Realistic Mission 14 updated Tutorial

<º))))>< Intro ><((((º>
Hai~ this is Faith again, this is my second article and my first requested tutorial.
This tutorial is how I finished Realistic Mission 14, I think the other tutorial (which is a really nice one) is out of date.

I will split this into 3 sections,
• Finding the key holes
• Finding the keys
• Opening the lock

<º))))>< What you need ><((((º>
Poison null byte http://www.hackthissite.org/articles/read/318 <3 net elemental
Php host such as www.t35.com
Very basic php scripting skills or ability to search through the forum

<º))))>< What you DON’T NEED, but is really nice to learn><((((º>
Javascript, cookie stealing
Hidden directory and change log and stuff
Regexes
Perl

<º))))>< Fining the key hole ><((((º>
1. You get your usual complaint and message, you’d end up with another mission =]
2. First, go around the sites are usual, and see if there is anything that you can exploit with poison null byte.
3. We found n***.c**?s****=*
4. Remember back in the Noob ages, we learnt that
. means current directory
.. means previous directory
5. Now if we apply one of the “dots” with the poison null byte, we can see all the directories that it has.
6. We see two interesting pages
7. M********.c**
8. A************.c**

<º))))>< Finding the keys ><((((º>

1. Let’s apply the one that starts with “m” with poison null byte first
2. You get a bunch of codes that tells you how does the page check for the password
3. Now just write a simple phpscript, copy the function on the bottom, and keep on trying until it falls in range. (pm for help on the script)
4. After you get the code, go to the “m” page without the poison nullbyte
5. Type the password you’re figure out, look up user, remember the symbol we use for variable, I’ve used it a couple on this tutorial to not spoil things that much.
6. Get the password and user name

<º))))>< Opening the lock ><((((º>
1. Go to the page that starts with an “a” you’ve found
2. Log on with the pass you’ve found
3. Voila =]

Second tutorials, I’ve tried to apply some of the things that was comment on my first article.
http://www.hackthissite.org/articles/read/675
Sorry there is not picture in this one, it will just spoil it completely... More constructive comments please =]

Hope it helps
Faith<3
Cast your vote on this article
10 - Highest, 1 - Lowest

Comments:
 Published: 30 comments.

Page: [1] 2

 chaosdragon - 03:26 am Thursday June 28th, 2007
Report this post
Avatar

Great Article! I\'m glad you put the things you don\'t need... after the forums and various other tuts I was thoroughly confused... I have already gotten to the script-writing part and now I at least know what kind =)ty!


 yourmysin - 04:11 am Thursday June 28th, 2007
Report this post
Avatar

Liked the tutorial, hopefully it will help me, i was stuck on this mission heh.

:)


 crashbird - 05:38 am Thursday June 28th, 2007
Report this post
Avatar

Great article...and wonderfully explained..
Have waited a lot for this one,,
Mission accomplished...
a 10/10 by me.


 vicarious - 06:29 am Thursday June 28th, 2007
Report this post
Avatar

Nice, realistic 14 is def one of the hard ones - 10/10 ;D

Loving the fish!


 joeyadms - 02:52 pm Thursday June 28th, 2007
Report this post
Avatar

Java is NOT JavaScript.


 sas01 - 03:17 pm Thursday June 28th, 2007
Report this post
Avatar

Corrected


 mutants_r_us_guild - 09:28 pm Thursday June 28th, 2007
Report this post
Avatar

Nice article. I like how you numbered the steps. That makes it easier to follow. Didn\'t read all of it. I will when I get to that mission though. I see you used the little fishies again. Also, I left you a PM about Realistic 11.


 liuyuan - 04:39 pm Saturday June 30th, 2007
Report this post
Avatar

k mutants, i\'ve sent one right back :D hopefully it helps, sorry for the late reply tho.
thanks sas01 for fixing typos ;p


 paranoiahax - 08:43 pm Thursday July 19th, 2007
Report this post
Avatar

Good article, shame I\'ve already done this, but I would have really appreciated it if I had this when I was doing it LOL


 hackuin60s - 10:17 am Friday August 03rd, 2007
Report this post
Avatar

<3.


 nippy93 - 01:39 pm Friday August 03rd, 2007
Report this post
Avatar

how do you list all the files? please some one help me!


 mutants_r_us_guild - 08:32 pm Friday August 03rd, 2007
Report this post
Avatar

I forgot you wrote this. I have been asking around everywhere for help with this mission. The forums are so out of date when it comes to this mission. They can be very misleading. Glad I found this article again.


 liuyuan - 04:17 pm Thursday August 09th, 2007
Report this post
Avatar

nippy, . means current directory, .. mean previous. Think about it.

mutant, thanks :D


 pinkmanonfire - 07:33 am Wednesday August 15th, 2007
Report this post
Avatar

\"and keep on trying until it falls in range.\" Which function am I trying to get? \"ValidKey?\"


 genocidepromoter - 02:51 pm Thursday August 16th, 2007
Report this post
Avatar

woah Faith. You\'ve done a great job! Pretty simple said . . . easy to read and easy to understand. Thanks!

by utererr.


 Hitekrednek - 06:14 pm Tuesday August 28th, 2007
Report this post
Avatar

Great job, faith. 15/10


 Kirbymaster - 06:10 pm Sunday September 02nd, 2007
Report this post
Avatar

good job with not having spoilers. Wow that was the most spoiler - free article i have ever read


 Kirbymaster - 06:10 pm Sunday September 02nd, 2007
Report this post
Avatar

good job with not having spoilers. Wow that was the most spoiler - free article i have ever read


 Loucetios - 09:51 pm Tuesday September 11th, 2007
Report this post
Avatar

Hmmm, found the first password. But a small hint to find the last password would\'ve been nice... or i suppose i could just wait the years for the sha1 hash to crack. Still though, good article, no spoilers which is very good. 10/10


 anthrax - 01:39 am Saturday September 15th, 2007
Report this post
Avatar

the poison null byte link doesnt work anymore =(


 Radical Dreamer - 04:15 pm Tuesday September 25th, 2007
Report this post
Avatar

I am so stuck on this one. I\'ve been stuck for some time now...

EDIT: nevermind i just completed it. Thanks for your guidance.


 flashcus - 09:09 pm Monday October 15th, 2007
Report this post
Avatar

I might give up on this soon. I cannot get a code for the mod section...

Can sum1 plz pm me and help!

Cheers,
Cus


 h4x3r - 06:02 pm Tuesday November 20th, 2007
Report this post
Avatar

im really stuck on the php script :)


 Mago__ - 09:08 pm Saturday January 12th, 2008
Report this post
Avatar

I\'m stuck on the PHP Script too... Can you help me please?


 Fot - 06:39 pm Tuesday March 11th, 2008
Report this post
Avatar

Very good article and well organised. I am finding it really useful since the missions' forums are down.. Btw, the link http://www.hackthissite.org/articles/read/318 doesn't work.Thanx Faith!
PS: I'm stuck on the PHP Script too :P


 nuclearhaxor - 11:10 am Saturday April 12th, 2008
Report this post
Avatar

what to put on search???


 flystar06 - 12:30 am Monday May 26th, 2008
Report this post
Avatar

not sure what the article you meant to link to had, but i found this one helpful
http://insecure.org/news/P55-07.txt


 Grover_Watrous - 06:09 pm Sunday June 01st, 2008
Report this post
Avatar

Good tutorial!
I'm still stuck finding the boss username, but i hope i'll find it soon! :D
I someone can give me a hint, would be great! ;)
Thanks for the article


 hackerman999 - 04:46 pm Saturday July 26th, 2008
Report this post
Avatar

whats poison null byte?


 weandude - 07:19 pm Friday September 26th, 2008
Report this post
Avatar

I cant list the files :S
I tried everything but it keeps sayng "Malformed Request" =/



Page: [1] 2

End Footer

HackThisSite is the collective work of the HackThisSite staff, licensed under a CC BY-NC license.
We ask that you inform us upon sharing or distributing.

Page Generated: Sat, 09 Dec 2023 18:26:55 +0000
Web Node: www03 | Page Gen: 0.093s | DB: 10q
Current Code Revision: v3.2.5 (Sun, 22 May 2016 20:29:51 +0000)

  Page View Counter