TranceAddict Forums (www.tranceaddict.com/forums)
- Humour / Funny Stuff / Cool Web Sites
-- lurn 2 hAAAAACK
Pages (5): « 1 2 [3] 4 5 »

Level 4

I need a bit of help on #4 where do I find the user/pass??? this is what I get...

// Source File Name: PasswdLevel4.java

import java.applet.Applet;
import java.applet.AppletContext;
import java.awt.*;
import java.awt.event.ActionEvent;
import java.awt.event.ActionListener;
import java.io.*;
import java.net.MalformedURLException;
import java.net.URL;
import java.util.EventObject;

public class PasswdLevel4 extends Applet
implements ActionListener
{

public PasswdLevel4()
{
inuser = new String[22];
totno = 0;
countConn = null;
countData = null;
inURL = null;
txtlogin = new TextField();
label1 = new Label();
label2 = new Label();
label3 = new Label();
txtpass = new TextField();
lblstatus = new Label();
ButOk = new Button();
ButReset = new Button();
lbltitle = new Label();
}

void ButOk_ActionPerformed(ActionEvent actionevent)
{
boolean flag = false;
for(int i = 1; i <= totno / 2; i++)
if(txtlogin.getText().trim().toUpperCase().intern() == inuser[2 * (i - 1) + 2].trim().toUpperCase().intern() && txtpass.getText().trim().toUpperCase().intern() == inuser[2 * (i - 1) + 3].trim().toUpperCase().intern())
{
lblstatus.setText("Login Success, Loading..");
flag = true;
String s = inuser[1].trim().intern();
String s1 = getParameter("targetframe");
if(s1 == null)
s1 = "_self";
try
{
finalurl = new URL(getCodeBase(), s);
}
catch(MalformedURLException _ex)
{
lblstatus.setText("Bad URL");
}
getAppletContext().showDocument(finalurl, s1);
}

if(!flag)
lblstatus.setText("Invaild Login or Password");
}

void ButReset_ActionPerformed(ActionEvent actionevent)
{
txtlogin.setText("");
txtpass.setText("");
}

public void actionPerformed(ActionEvent actionevent)
{
Object obj = actionevent.getSource();
if(obj == ButOk)
{
ButOk_ActionPerformed(actionevent);
return;
}
if(obj == ButReset)
ButReset_ActionPerformed(actionevent);
}

public void destroy()
{
ButOk.setEnabled(false);
ButReset.setEnabled(false);
txtlogin.setVisible(false);
txtpass.setVisible(false);
}

public void inFile()
{
new StringBuffer();
try
{
countConn = inURL.openStream();
countData = new BufferedReader(new InputStreamReader(countConn));
String s;
while((s = countData.readLine()) != null)
if(totno < 21)
{
totno = totno + 1;
inuser[totno] = s;
s = "";
} else
{
lblstatus.setText("Cannot Exceed 10 users, Applet fail start!");
destroy();
}
}
catch(IOException ioexception)
{
getAppletContext().showStatus("IO Error:" + ioexception.getMessage());
}
try
{
countConn.close();
countData.close();
return;
}
catch(IOException ioexception1)
{
getAppletContext().showStatus("IO Error:" + ioexception1.getMessage());
}
}

public void init()
{
setLayout(null);
setSize(361, 191);
add(txtlogin);
txtlogin.setBounds(156, 72, 132, 24);
label1.setText("Please Enter Login Name & Password");
label1.setAlignment(1);
add(label1);
label1.setFont(new Font("Dialog", 1, 12));
label1.setBounds(41, 36, 280, 24);
label2.setText("Login");
add(label2);
label2.setFont(new Font("Dialog", 1, 12));
label2.setBounds(75, 72, 36, 24);
label3.setText("Password");
add(label3);
add(txtpass);
txtpass.setEchoChar('*');
txtpass.setBounds(156, 108, 132, 24);
lblstatus.setAlignment(1);
label3.setFont(new Font("Dialog", 1, 12));
label3.setBounds(75, 108, 57, 21);
add(lblstatus);
lblstatus.setFont(new Font("Dialog", 1, 12));
lblstatus.setBounds(14, 132, 344, 24);
ButOk.setLabel("OK");
add(ButOk);
ButOk.setFont(new Font("Dialog", 1, 12));
ButOk.setBounds(105, 156, 59, 23);
ButReset.setLabel("Reset");
add(ButReset);
ButReset.setFont(new Font("Dialog", 1, 12));
ButReset.setBounds(204, 156, 59, 23);
lbltitle.setAlignment(1);
add(lbltitle);
lbltitle.setFont(new Font("Dialog", 1, 12));
lbltitle.setBounds(12, 14, 336, 24);
String s = getParameter("title");
lbltitle.setText(s);
ButOk.addActionListener(this);
ButReset.addActionListener(this);
infile = new String("level4");
try
{
inURL = new URL(getCodeBase(), infile);
}
catch(MalformedURLException _ex)
{
getAppletContext().showStatus("Bad Counter URL:" + inURL);
}
inFile();
}

private URL finalurl;
String infile;
String inuser[];
int totno;
InputStream countConn;
BufferedReader countData;
URL inURL;
TextField txtlogin;
Label label1;
Label label2;
Label label3;
TextField txtpass;
Label lblstatus;
Button ButOk;
Button ButReset;
Label lbltitle;
}

T-C, I think that you have to search your cookies for the password..

Hehe, finished all those levels a while ago.
Took me some nights, I can tell ya that.

Grtx,
Provocative

ack..im stuck on level 4...ill come back to it another day with a fresh mind...

Re: lurn 2 hAAAAACK

quote:

Originally posted by lMIlk http://www.try2hack.nl/level1.html tell me how far you get it gets really hard

this is HARD? noone can outsmart this 3r33t h4x0r p4x0r in t3h p4ntz0r. NOONE can defeat my trust back orifice trojans and netbus hacks. I CAN HACK YOU WITH PROGRAMS IF I MUST.

...rofl...

hi sexy milk boy, good head comes from wonderful places...

Re: Level 4

quote:

Originally posted by Trance-Canada I need a bit of help on #4 where do I find the user/pass??? this is what I get... void ButOk_ActionPerformed(ActionEvent actionevent) { boolean flag = false; for(int i = 1; i <= totno / 2; i++) if(txtlogin.getText().trim().toUpperCase().intern() == inuser[2 * (i - 1) + 2].trim().toUpperCase().intern() && txtpass.getText().trim().toUpperCase().intern() == inuser[2 * (i - 1) + 3].trim().toUpperCase().intern()) { lblstatus.setText("Login Success, Loading.."); flag = true; String s = inuser[1].trim().intern(); String s1 = getParameter("targetframe"); if(s1 == null) s1 = "_self"; try { finalurl = new URL(getCodeBase(), s); } catch(MalformedURLException _ex) { lblstatus.setText("Bad URL"); } getAppletContext().showDocument(finalurl, s1); } if(!flag) lblstatus.setText("Invaild Login or Password"); } public void inFile() { new StringBuffer(); try { countConn = inURL.openStream(); countData = new BufferedReader(new InputStreamReader(countConn)); String s; while((s = countData.readLine()) != null) (WTF is that? if(totno < 21) { totno = totno + 1; inuser[totno] = s; s = ""; } else { lblstatus.setText("Cannot Exceed 10 users, Applet fail start!"); destroy(); }

arggggghh, took me 5 minutes to get to level 4 and now i've been stuck on it for an hour!!!

it seems that the password is stored in the INUSER string in the following way: the username starts @ location [2] (which is the 3 slot) and the next letter is @ [4] and so on

the password starts @ [3] and takes up every odd slot

unfortunately, the only tools i have are ie and notepad... sorta like picking a lock with a pen and sunglasses

WTF?

hey?I'm absoluetly confused!HOW DID U MANAGED TO KNOW THOSE PWs?Did u use any program or something?

me got up to xxxxxxxxl-6.html
ROFL and meh only 15 yrz of age too
meh 1337 h4x0r

Re: Level 4

quote:

Originally posted by Trance-Canada void ButOk_ActionPerformed(ActionEvent actionevent) { boolean flag = false; for(int i = 1; i <= totno / 2; i++) if(txtlogin.getText().trim().toUpperCase().intern() == inuser[2 * (i - 1) + 2].trim().toUpperCase().intern() && txtpass.getText().trim().toUpperCase().intern() == inuser[2 * (i - 1) + 3].trim().toUpperCase().intern()) { lblstatus.setText("Login Success, Loading.."); flag = true; String s = inuser[1].trim().intern(); String s1 = getParameter("targetframe"); if(s1 == null) s1 = "_self"; try { finalurl = new URL(getCodeBase(), s); } catch(MalformedURLException _ex) { lblstatus.setText("Bad URL"); } getAppletContext().showDocument(finalurl, s1); } if(!flag) lblstatus.setText("Invaild Login or Password"); }

damn it, i'm addicted... i've been working on this for like 2 hours (with IRC chatting and music listening of course )

i'm kinda confused about the if statement... it seems as if it checks ONLY 1 letter from each field and then goes on to load the next level..

that's not how i would've programmed it anyway...:

for (blah)
if (this !=that)
{
refuse login
break
}
accept login


but their site switches the refuse and the accept statements

WTF is all this codin, it looks like sumint of the matrix to me!

Lil help with level 4? The others were pretty much a breeze... I decompiled level 4, but not knowing Java I cant make much out of it... any hints?

Kind a stuck in level 4 help plzzz!

What in gods name do you do for level 3?

mwahahaha, stupid me, i hacked level 4, i'm a 5|_||04|-| 1337 |-|4x0r !!!!!


i'm off to hack level 5 and then microsoft!!!

here's 2 hints for ya'll for level 4:

since the applet doesn't contact the server, it stores the password on your computer.


and if you still have no clue:


public void init()
{
setLayout(null);
setSize(361, 191);
add(txtlogin);
txtlogin.setBounds(156, 72, 132, 24);
label1.setText("Please Enter Login Name & Password");
label1.setAlignment(1);
add(label1);
label1.setFont(new Font("Dialog", 1, 12));
label1.setBounds(41, 36, 280, 24);
label2.setText("Login");
add(label2);
label2.setFont(new Font("Dialog", 1, 12));
label2.setBounds(75, 72, 36, 24);
label3.setText("Password");
add(label3);
add(txtpass);
txtpass.setEchoChar('*');
txtpass.setBounds(156, 108, 132, 24);
lblstatus.setAlignment(1);
label3.setFont(new Font("Dialog", 1, 12));
label3.setBounds(75, 108, 57, 21);
add(lblstatus);
lblstatus.setFont(new Font("Dialog", 1, 12));
lblstatus.setBounds(14, 132, 344, 24);
ButOk.setLabel("OK");
add(ButOk);
ButOk.setFont(new Font("Dialog", 1, 12));
ButOk.setBounds(105, 156, 59, 23);
ButReset.setLabel("Reset");
add(ButReset);
ButReset.setFont(new Font("Dialog", 1, 12));
ButReset.setBounds(204, 156, 59, 23);
lbltitle.setAlignment(1);
add(lbltitle);
lbltitle.setFont(new Font("Dialog", 1, 12));
lbltitle.setBounds(12, 14, 336, 24);
String s = getParameter("title");
lbltitle.setText(s);
ButOk.addActionListener(this);
ButReset.addActionListener(this);
infile = new String("level4");
try
{
inURL = new URL(getCodeBase(), infile);
}
catch(MalformedURLException _ex)
{
getAppletContext().showStatus("Bad Counter URL:" + inURL);
}
inFile();
}

quote:

Originally posted by Dmatrox i used DoDi's Visual Basic Tools to decompile the exe, but i have no understanding in VB code, so i cant figure it out

it's easy

here's where your real login is

If txtUsername <> Mid(mc001A, 56, 1) & Mid(mc001A, 28, 1)
& Mid(mc001A, 35, 1) & Mid(mc001A, 3, 1) & Mid(mc001A, 44, 1)
& Mid(mc001A, 11, 1) & Mid(mc001A, 13, 1) & Mid(mc001A, 21, 1)


here's where your real password is

If txtPassword <> Mid(mc001A, 51, 1) & Mid(mc001A, 31, 1)
& Mid(mc001A, 30, 1) & Mid(mc001A, 51, 1) & Mid(mc001A, 16, 1)
& Mid(mc001A, 45, 1) & Mid(mc001A, 24, 1) & Mid(mc001A, 29, 1)
& Mid(mc001A, 26, 1) & Mid(mc001A, 19, 1) & Mid(mc001A, 28, 1)
& Mid(mc001A, 11, 1) & Mid(mc001A, 30, 1) & Mid(mc001A, 19, 1)
& Mid(mc001A, 25, 1) & Mid(mc001A, 24, 1)

here's the hash source which is used for encryption

Const mc001A =
"0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ.,:;-*+=~|&a
mp;!_$#@()[]{}<\/>"



i stuck on level 6

almost done with level 6
bwuahahaha!

quote:

Originally posted by Acid Junkie it's easy

*TiestoInTheMix bangs his head on the wall and on the keyboard...


it took me 30 minutes to go through the files and realize they don't contain any hint of a pasword at all (i guessed the username though).

it took me 1 hour to find a decompiler.

it took me 30 minutes to realize that the damn thing won't work and even if it did, i would be reading something that'd look like chinese to me.

thanks to acid junkie i got the password...

i am currently on level 6... thank god i browsed the usenet before and found out that you can't decompile vb5 and vb6 at all... otherwise i would have spent the whole night doing it...

and the goddamn level 6 proggie DOES connect to the internet, thus it must mean it retrieves the password from the server and therefore

*TiestoInTheMix bows his head and gives up...

*TiestoInTheMix will never be a hacker (well, as long as these damn vb3 decompilers don't work!!!)

yay!
ababa aabaa baabb aabaa ababa baaab aabaa baabb aabaa abbaa
stands for the url of the next level!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

it's http://www.try2hack.nl/levelseven.html


and that's where i'm giving up. i have no idea how to overcome the script...



acid junkie looks under his bed, pulls out his old books on perl scripting, wipes off the dust, and starts to read to find anything useful...

quote:

Originally posted by TiestoInTheMix and the goddamn level 6 proggie DOES connect to the internet, thus it must mean it retrieves the password from the server and therefore

that's the whole point! the trick is that u can leech whatever the program sends and when u do it u'l find encrypted username/password/urlofthenexlevel

quote:

Originally posted by Acid Junkie that's the whole point! the trick is that u can leech whatever the program sends and when u do it u'l find encrypted username/password/urlofthenexlevel

i know and that's the problem, i don't know how to do it. i tried setting the proxy to 127.0.0.1 which is probably stupid, but that's all i could come up with

hm proxy? no. a firewall that can log all traffic in *both* directions could help u better than a proxy cause u need to look through the outgoing traffic, not the ingoing. a firewall or a sniffer for tcp/ip protocol such as NetworkActiv Sniffer 1.4.2.1.

quote:

Originally posted by Acid Junkie hm proxy? no. a firewall that can log all traffic in *both* directions could help u better than a proxy cause u need to look through the outgoing traffic, not the ingoing. a firewall or a sniffer for tcp/ip protocol such as NetworkActiv Sniffer 1.4.2.1.

aha! that's exactly what i was searching for on the usenet, too bad the damn archives didn't have anything...

thanks for the proggie,man, it's very useful!

and now i'm off to decipher that... omg, it looks scary...

hehe... the algorithm is a bit tricky took me a while to get it. anyway, i think level seven can be done if u have unix/linux and an ip spoofer, but i don't know how to use a spoofer... so i decideed to go to bed now, i'm tired already

happy hacking

I still cant find the cookie file for level 4

quote:

Originally posted by Acid Junkie hehe... the algorithm is a bit tricky took me a while to get it. happy hacking

there's no way in hell you could've gotten that all by yourself... i mean, c'mon, it uses two double letter assignments and that messes up the whole binary table structure... twice!


as for level 7... i was gonna cry, but then i thought of an idea.
we don't need all that stuff. besides, IE 6.72 doesn't exist. we can fake a request for the script and send it erroneous information. that's not simply intercepting packets, it's FAKING them! the problem is that thinking of a way to do it is half the problem... you gotta find a proggie to do it too... or write one yourself... *shrugs*

sym: mine was called level4[1].txt and it was in the "temporary internet files" directory


arghhh, it's 3 am, wtf am i doing up so late???

Powered by: vBulletin
Copyright © 2000-2021, Jelsoft Enterprises Ltd.