Page 1 of 35

Please ask questions ONLY in this topic.

PostPosted: Mon Apr 14, 2008 1:15 pm
by Nyteblade
Hello,

I wonder if anyone can point me in the right direction since I'm kinda stuck. So far, I've been able to determine that there's at least 6 different usernames, using the 'User Info' search, for different variations on Gary Hunter. 3 require a password, 2 do not require a password and 1 (admin) has a password of 'admin' and it's at this point I'm sorta stuck.

I noticed the 'cleardir.php' uses a 'dir' in the form of '<username>SQLFiles' which leads me to believe a SQL server is involved. I also noticed that when you login to the latter 3 accounts, it displays a 'Password: <some-hash>' on the page which I'm currently trying in a MD2 hash crack.

Can anyone steer me in the right direction? I know I'm missing something. :D

EDITED BY FAITH

Please ask questions only in this topic.
Just to keep the forum neat, and hopefully your post more noticed.
Please help us to keep the forum clean by report trashy posts. :>
You may start a new post if you're making a tutorial. However, if the tutorials are similar, please do not make two.

I wish you best luck with this mission, and hope you enjoy it.

<3 faith.

Re: Stuck

PostPosted: Mon Apr 14, 2008 1:25 pm
by BhaaL
You dont actually have to crack it. Check your cookies.

Re: Stuck

PostPosted: Mon Apr 14, 2008 2:04 pm
by Nyteblade
BhaaL wrote:You dont actually have to crack it. Check your cookies.


OK... I must still be missing something. Checking my cookies doesn't show me anything I don't already know. Is there something I'm still not seeing?

Re: Stuck

PostPosted: Mon Apr 14, 2008 2:13 pm
by BhaaL
I suppose you are logged in, aren't you?
Hint: It doesn't seem to check the password later on...

Re: Stuck

PostPosted: Mon Apr 14, 2008 2:36 pm
by Nyteblade
BhaaL wrote:I suppose you are logged in, aren't you?
Hint: It doesn't seem to check the password later on...


I'm logged in as the 'admin' user.

Re: Stuck

PostPosted: Mon Apr 14, 2008 4:07 pm
by weekend hacker
the 'admin' user is just another random user added by someone trying to complete the mission.
you need to find the correct name and somehow trick the script into thinking he's the one sending money and get rid of any tracks.

Re: Stuck

PostPosted: Mon Apr 14, 2008 4:10 pm
by nuclearhaxor
Edit: No Spoilers

Re: Stuck

PostPosted: Mon Apr 14, 2008 5:21 pm
by TheMindRapist
Did you manage to list all the usernames yet, or did you just use the search function to find names involving Gary? You have to list all the usernames, how could you trick the search function into doing this?

Re: Stuck

PostPosted: Tue Apr 15, 2008 1:01 pm
by Nyteblade
TheMindRapist wrote:Did you manage to list all the usernames yet, or did you just use the search function to find names involving Gary? You have to list all the usernames, how could you trick the search function into doing this?


I haven't managed to get a list of all the users yet. I'm still working on that part. Having to jump back and forth between this an RL stuff slows me down.
EDIT: I've managed to get the list of everyone now. I had a syntax error in my injection :oops:

Re: Stuck

PostPosted: Tue Apr 15, 2008 2:30 pm
by Casval
Ah, I know how you feel.
When you check the usernames and there's 9384572034589723049587 different variations of the guy's account because some people want to be "clever".
You seem to be on the right track though, the real username is very easy to find.