Hack This Site Forum

Hello,

I wonder if anyone can point me in the right direction since I'm kinda stuck. So far, I've been able to determine that there's at least 6 different usernames, using the 'User Info' search, for different variations on Gary Hunter. 3 require a password, 2 do not require a password and 1 (admin) has a password of 'admin' and it's at this point I'm sorta stuck.

I noticed the 'cleardir.php' uses a 'dir' in the form of '<username>SQLFiles' which leads me to believe a SQL server is involved. I also noticed that when you login to the latter 3 accounts, it displays a 'Password: <some-hash>' on the page which I'm currently trying in a MD2 hash crack.

Can anyone steer me in the right direction? I know I'm missing something.

EDITED BY FAITH

Please ask questions only in this topic.
Just to keep the forum neat, and hopefully your post more noticed.
Please help us to keep the forum clean by report trashy posts. :>
You may start a new post if you're making a tutorial. However, if the tutorials are similar, please do not make two.

I wish you best luck with this mission, and hope you enjoy it.

<3 faith.

You dont actually have to crack it. Check your cookies.

BhaaL wrote:You dont actually have to crack it. Check your cookies.

OK... I must still be missing something. Checking my cookies doesn't show me anything I don't already know. Is there something I'm still not seeing?

I suppose you are logged in, aren't you?
Hint: It doesn't seem to check the password later on...

BhaaL wrote:I suppose you are logged in, aren't you?
Hint: It doesn't seem to check the password later on...

I'm logged in as the 'admin' user.

the 'admin' user is just another random user added by someone trying to complete the mission.
you need to find the correct name and somehow trick the script into thinking he's the one sending money and get rid of any tracks.

Did you manage to list all the usernames yet, or did you just use the search function to find names involving Gary? You have to list all the usernames, how could you trick the search function into doing this?

TheMindRapist wrote:Did you manage to list all the usernames yet, or did you just use the search function to find names involving Gary? You have to list all the usernames, how could you trick the search function into doing this?

I haven't managed to get a list of all the users yet. I'm still working on that part. Having to jump back and forth between this an RL stuff slows me down.
EDIT: I've managed to get the list of everyone now. I had a syntax error in my injection

Ah, I know how you feel.
When you check the usernames and there's 9384572034589723049587 different variations of the guy's account because some people want to be "clever".
You seem to be on the right track though, the real username is very easy to find.