----------------------------------- Triple Five Fri Dec 19, 2003 12:23 pm Try 2 Hack! ----------------------------------- go to http://www.try2hack.nl/ i got to level 2 :D just learning can anyone link me to a tutorial thanks :D ----------------------------------- Mazer Sun Dec 28, 2003 3:02 pm ----------------------------------- lol, yeah level 1 was like SO hard :wink: i'm just kidding... this looks really interesting, thanks for sharing ----------------------------------- Thuged_Out_G Sun Dec 28, 2003 3:24 pm ----------------------------------- i made it to level 5(or maybe it was 4) i stopped when i had to download a java class, decompile it and find the password lol....i did decompile it, but i dont know java so i couldnt find the pw or username lol if anyone wants ill post solutions for the first 5(not answers, but how to get them) ----------------------------------- Tony Sun Dec 28, 2003 3:36 pm ----------------------------------- well for lvl one you just look at the source code for the HTML page - password is in the if statment. For level two - password is hidden in a comment of javascript, but username has me puzzled :? ----------------------------------- Amailer Sun Dec 28, 2003 4:42 pm ----------------------------------- What's the user name? ----------------------------------- strife_8 Sun Dec 28, 2003 6:40 pm ----------------------------------- for level 2 the html code wont help, the password that it shows there is a decoy. I know that the answer is somewhere in the temp folder but i dont know where... ----------------------------------- Amailer Sun Dec 28, 2003 7:07 pm ----------------------------------- Doesn't it need to use some script ( the flash ) for it to work?? or can you actually make a login script in flash? ----------------------------------- Amailer Sun Dec 28, 2003 7:39 pm ----------------------------------- eh here guys im smart if (txtUsername == "try2hack" && txtPassword == "irtehh4x0r!") ----------------------------------- Amailer Sun Dec 28, 2003 7:57 pm ----------------------------------- so simple im at lvl 4 ----------------------------------- Thuged_Out_G Sun Dec 28, 2003 8:19 pm ----------------------------------- for level 2, you need to go to the temporary internet folder, and find the flash file....copy it somewhere, and open it in a text editor. level three i think is the prompt question...i think i just pressed cancel and then stop quickly...then i think it was in the source, you gotta open the file called JavaScript ----------------------------------- Amailer Sun Dec 28, 2003 9:14 pm ----------------------------------- http://www.try2hack.nl/levels/level4-kdnvxs.xhtml level 4 is anoying, where can i get the PasswdLevel4.java? ----------------------------------- Thuged_Out_G Sun Dec 28, 2003 10:41 pm ----------------------------------- http://www.try2hack.nl/levels/PasswdLevel4.class good luck with that, youll have to get a java decompiler...i found the username & password in the program...i looked, and couldnt find it :? ----------------------------------- Amailer Sun Dec 28, 2003 10:58 pm ----------------------------------- thats .class there is nothing there, just how the loging in takes place ----------------------------------- santabruzer Mon Dec 29, 2003 12:30 am ----------------------------------- don't know java.. but the decompiled is: // Source File Name: PasswdLevel4.java import java.applet.Applet; import java.applet.AppletContext; import java.awt.*; import java.awt.event.ActionEvent; import java.awt.event.ActionListener; import java.io.*; import java.net.MalformedURLException; import java.net.URL; import java.util.EventObject; public class PasswdLevel4 extends Applet implements ActionListener { public PasswdLevel4() { inuser = new String[22]; totno = 0; countConn = null; countData = null; inURL = null; txtlogin = new TextField(); label1 = new Label(); label2 = new Label(); label3 = new Label(); txtpass = new TextField(); lblstatus = new Label(); ButOk = new Button(); ButReset = new Button(); lbltitle = new Label(); } void ButOk_ActionPerformed(ActionEvent actionevent) { boolean flag = false; for(int i = 1; i source ----------------------------------- shorthair Tue Jan 27, 2004 8:28 pm ----------------------------------- i thought try to hack was hard , this one is just insane ----------------------------------- Cervantes Tue Jan 27, 2004 8:39 pm ----------------------------------- whats "this one" tony -> lvl 2 on try2hack is the one with the blue gradient boxes where you must enter username and password ----------------------------------- shorthair Tue Jan 27, 2004 8:40 pm ----------------------------------- The one that has 16 levels , to lazy to go to the main page , i jsut clicked the link , its pretty hard , i got 2 level 3 but i think im gonna give up ----------------------------------- Cervantes Tue Jan 27, 2004 8:45 pm ----------------------------------- thats the hackits one how'd you do lvl 2 on that one? :? ----------------------------------- shorthair Tue Jan 27, 2004 8:47 pm ----------------------------------- * Shorthair bows in shame , my daddy did it for me *, i dont wanna ruin it , it says no cheating in the rules , iafter he did it , i found that it was quite easy after you figure the first step , but i would of never thought of it ----------------------------------- Cervantes Tue Jan 27, 2004 8:49 pm ----------------------------------- PM me then :? ----------------------------------- Mazer Tue Jan 27, 2004 8:57 pm ----------------------------------- Don't give up on hackits, I like that one! :P The hardest part is finding a way to view the page's source. Just try everything you can to find it, and if you give up go download Mozilla Firebird for which the no-right-click script doesn't work :wink: ----------------------------------- santabruzer Tue Jan 27, 2004 9:58 pm ----------------------------------- hackits i found is extremly easy.. up to number 5, where i have to know javascript.. and know what code.length means.. where code is the array.. any suggestions ? ----------------------------------- Cervantes Wed Jan 28, 2004 9:07 am ----------------------------------- sweet I just did it!! one question though, when the grey box is up that says "Script Prompt: Please enter password!", is there any way that I can view the source code (I'm using internet explorer) at that point without hitting okay or cancle and waiting for it to say Access Denied and then going to view ==> source Cheers ----------------------------------- Mazer Wed Jan 28, 2004 9:32 am ----------------------------------- santabruzer > Well, if 'code' is an array, I suppose 'code.length' might be a function to return the length or number of elements in said array :wink: Cervantes > Yes, you need to get the source without having the browser loading the page, and thus executing the script. Now what program can you use to make notes or possibly view html code without actually running it? One that allows you to 'open' a file by selecting open from the file menu and then typing in the location on the hard drive or internet address of the desired file? ----------------------------------- shorthair Wed Jan 28, 2004 10:05 am ----------------------------------- Ie makes the first couple of levels harder , mozilla all the way , trying level 5 now ----------------------------------- Cervantes Wed Jan 28, 2004 10:10 am ----------------------------------- well I'm on level 4 with IE.. Mazer > no clue :? what program are you referring to? ----------------------------------- Cervantes Wed Jan 28, 2004 10:16 am ----------------------------------- hey, what does var a=unescape("%43%4f%44%45%5a"); mean? its from level 4 at hackits... can't get passed that one :? ----------------------------------- Mazer Wed Jan 28, 2004 10:18 am ----------------------------------- to make notes I'm referring to notepad. :wink: Well, there goes my no-cheating policy. Open up notepad, go to open, then type in the address to the htm file, give it a second to download the source and then you should be able to find the password there. EDIT: unescape? You know how when you upload a pic or something that has spaces in the filename, the spaces turn into '%20' or something? That's escaping, kinda. JavaScript has a function to 'unescape' so you can turn that back into what it said originally. You can make your own html and javascript page to simply output that. EDIT II: OK, I kinda suck at explaining things. Google.com search "unescape" hit number 2. ----------------------------------- Cervantes Wed Jan 28, 2004 10:21 am ----------------------------------- hmm thats a neat way of doing it. never thought of that unfortunately, I already have the source code for the level, I just can't get the password from the source code, it confuses me :? ----------------------------------- Triple Five Wed Jan 28, 2004 10:50 am ----------------------------------- lv 5 for try to hack- i cant seem to get the source for it.. wont let me open it in notepad or anything...how would you decomplie it... cause all i did was download the .dll file for VB 3.0 to open the prog. :? plz help or a little hint :idea: plz ...also level 2 for hackits has me confused! :? any help! thanks.... :idea: hint for levels in try to hack 1- source 2- Temp Internet Files 3- Source 4- Temp Internet Files ----------------------------------- santabruzer Wed Jan 28, 2004 11:32 am ----------------------------------- ok.. lvl 5 ... seach on google.. if that's the one that is VB 3... i don't remember.. there was another which was VB 6.. and you had to use another method.. anyways.. i did the first 7 hackits challenges.. and the 8th one with the redirect has me stumped.. seriously.. how can you pass that... :(... ----------------------------------- Cervantes Wed Jan 28, 2004 12:16 pm ----------------------------------- for hackits lvl 4 is the password in the source or do you have to use temp internet files?? ----------------------------------- Mazer Wed Jan 28, 2004 12:35 pm ----------------------------------- Yeah, it's in the source code. You have to find out what the unescape function will return, then type that in as the password. ----------------------------------- Cervantes Wed Jan 28, 2004 12:55 pm ----------------------------------- I don't know the language at all so I don't know what unescape does though.. ----------------------------------- Delos Wed Jan 28, 2004 1:25 pm ----------------------------------- man I can't get past lvl 2 on either http://scifi.pages.at/hackits/ or try2hack... help! :? For hackits, just look at the source for lvl 2. It's not hard. For lvl3, however, the source is hidden in a pw() function. So, meh. ----------------------------------- santabruzer Wed Jan 28, 2004 3:12 pm ----------------------------------- ha ha.. lvl 8 on hackits is quite simple.. :P... it's right in front of you.. ----------------------------------- Cervantes Wed Jan 28, 2004 4:33 pm ----------------------------------- man I can't get past lvl 2 on either http://scifi.pages.at/hackits/ or try2hack... help! :? For hackits, just look at the source for lvl 2. It's not hard. For lvl3, however, the source is hidden in a pw() function. So, meh. well I'm on level 4 thanks I got it though :) what oh what is unescape / where could I find out what it is? ----------------------------------- Mazer Wed Jan 28, 2004 5:05 pm ----------------------------------- ha ha.. lvl 8 on hackits is quite simple.. :P... it's right in front of you.. Oh geez... why didn't I think of that? I still think it was stupid though. ----------------------------------- Mazer Wed Jan 28, 2004 5:23 pm ----------------------------------- Well, just finished number 9.... the stupid way :shifty: ----------------------------------- shorthair Wed Jan 28, 2004 5:50 pm ----------------------------------- Lvl 7 so proud , and i havent cheated yet , this is like a life time acheivement ----------------------------------- santabruzer Wed Jan 28, 2004 5:50 pm ----------------------------------- mazer.. how when why.. wha? ... did you just brute force it :P ... cause everything on google is german :( ----------------------------------- Triple Five Wed Jan 28, 2004 6:07 pm ----------------------------------- u got that right! :lol: everyone on google is german :twisted: not that thers anything wrong with Germans :? ----------------------------------- santabruzer Wed Jan 28, 2004 6:41 pm ----------------------------------- yea.. it was actually alot simpler than i thought.. all you had to do *censor*... and then you would get to the next level :P... yea.. well i'm at lvl 13.. and don't want to use my brain for it.. so i'm just bruteforcing all possible combinations :P.. ----------------------------------- Mazer Wed Jan 28, 2004 9:40 pm ----------------------------------- mazer.. how when why.. wha? ... did you just brute force it :P ... cause everything on google is german :( Security level 9? Well, apparently you're supposed to make a tiny edit in the page's source and everything will pretty much fall into place. I kinda missed that part, and ended up writing a program in turing to read and parse the source... it was still ugly but oh well. ----------------------------------- Maverick Wed Jan 28, 2004 10:14 pm ----------------------------------- yA well i got to level 3 without cheating so there. ----------------------------------- santabruzer Wed Jan 28, 2004 10:17 pm ----------------------------------- ha ha... dude.. we are still all so far away from hacking as this is not even close.. i would expect someone like Hacker Dan, or some of the senior members to be able to really hack, as for us, these are just simply games :P.. and i got to lvl 12 on Hackits.. without cheating :P ----------------------------------- shorthair Wed Jan 28, 2004 10:18 pm ----------------------------------- Doin 9 , ive glanced over the posts , so i cant say i havent had some hints but mostly alone ----------------------------------- Maverick Wed Jan 28, 2004 10:23 pm ----------------------------------- thats a load of you know what daisies ----------------------------------- Mazer Thu Jan 29, 2004 10:51 am ----------------------------------- What are people talking about "without cheating"? The whole idea is to exploit (intentional) flaws in the web pages security to learn about how JavaScript is insubstantial to protecting private web pages. Nothing is done "without cheating". ----------------------------------- santabruzer Thu Jan 29, 2004 3:48 pm ----------------------------------- i just don't know which did he imply that message, me or shorthair.. i dunnu.. but yea, without cheating for some reason is not considered without looking at the post made here... so i dunnu.. ----------------------------------- Cervantes Fri Jan 30, 2004 5:28 pm ----------------------------------- woot I've gotten to level 7 on hackits! except I've got no clue about this one... :( ----------------------------------- santabruzer Wed Feb 04, 2004 10:08 pm ----------------------------------- good job.. even though i'm bringing an old topic.. i've come across one of the best hacking challenges.. well to my opinion: http://m4tr1x.wsn.at/... you have to join, and it's forum like.. but it has amazing challenges.. that use a veriety of things... plus it has a matrix story :P.. well i'm on lvl 3... ----------------------------------- Cervantes Wed Sep 22, 2004 9:12 pm ----------------------------------- even though i'm bringing an old topic.. ditto. :lol: I'll try that matrix one out tommorow probably :? anyways, I'm trying this hacits out again, and first off, they've moved to http://academy.dyndns.org I'm stuck on level 10. i know that that bit about n and 2n is not a hint to the pword, but on a forum that came up from googling somebody said that you have to find source4.js somewhere on the site. is there anyway to do that other than just trying a bunch of different URLs? ----------------------------------- TheFerret Thu Sep 23, 2004 9:12 pm ----------------------------------- If you are stuck on Hackits lvl 3 then you could do it the easy way and change the URL... EDIT: Can't get past lvl 7... ----------------------------------- Cervantes Fri Sep 24, 2004 7:32 am ----------------------------------- have you found the source code for number 6? That's the hard part. Once you've done that, it's only as hard as level 2. If you haven't found the source code, read back through this thread and you'll learn from Mazer a nifty way of getting the source code. ----------------------------------- Amailer Fri Sep 24, 2004 7:39 am ----------------------------------- *sigh* peoeple are still trying this? :roll: ----------------------------------- Genesis Fri Sep 24, 2004 2:48 pm ----------------------------------- Haha, ya it is fun. Though it's not really my idea of "hacking" as people have come to use the word. It's just testing your ability to find and read javascript source code. ----------------------------------- Dan Fri Sep 24, 2004 4:40 pm ----------------------------------- Also thess sites are an effctive way of teching polope to not uses java scripted, flash nor unecripted java applets for secuity on there site. ----------------------------------- rizzix Fri Sep 24, 2004 4:45 pm ----------------------------------- actually u could use unencrypted applets.. so long as its designed using a client server model.. where ur applet is the client.. its pretty safe that way.. but just make sure to encrypt the network stream. ----------------------------------- Dan Fri Sep 24, 2004 5:26 pm ----------------------------------- I was meaning more in the terms of an passowrd progame to get to a webpage like most of thess hacking sites are. But you are right if u put some effert in to it, it deftaly whould be secure but then why not just use php for somting simple? ----------------------------------- the_short1 Fri Sep 24, 2004 5:40 pm ----------------------------------- whats this java compiler??.... is it small download?? or just notepad.. hahah sounds like a fun game.... anyways.. i needed to post so i could see it when i search for posts by me and so i dont loose this topic... ----------------------------------- Genesis Fri Sep 24, 2004 9:25 pm ----------------------------------- whats this java compiler??.... is it small download?? or just notepad.. hahah The Java compiler would be what is used to compile java code! (Though where was the compiler mentioned in this thread?) The download isn't too big I don't think...I cant remember though. And notepad is what you would use to write the code before compiling it. (Unless you use an IDE, such as JCreator, which is one of my favourites.) ----------------------------------- templest Fri Sep 24, 2004 9:38 pm ----------------------------------- Oh my God! I'm stuck on level 10 from the "hackit" site. I've honestly been staring at the10th.htm's source for 3 straight hours trying to figure something out but can't think of crap. Like... fück. Everything's been pretty straight-forward so far... It's just this little number that's fücking me over! :mad: EDIT: I'm thinking that since the page I get a link to: Being a script, it produced a bogus ".js" file, and displays that instead of the real source. Now... How to get the browser to load that page (or transfer to local file) without it running the script. :? Hm... maybe if I load it in lynx... but, meh... I'll keep thinking for now. ----------------------------------- rizzix Sat Sep 25, 2004 12:21 am ----------------------------------- haha not even lynx can help u out there.. but if ur observant u'll notice something... really really tricky.. wow they are smart lol ----------------------------------- templest Sat Sep 25, 2004 12:30 am ----------------------------------- I'm probably brain dead from all this thinking, going to sleep... I swear I'll have lvl 16 done before this weekend's over or I'm donating all my bits to shorthair. ----------------------------------- rizzix Sat Sep 25, 2004 12:49 am ----------------------------------- hey could u give me the code to 7,8 and 9? cuz i need it for 12 ----------------------------------- Paul Sat Sep 25, 2004 8:34 am ----------------------------------- its fun... I can't get past 8 though, the other ones have been easy, the one javascript one with the code.length, I kinda took more than 3 minutes because I didn't notice the array was named code. But 8, it prolly has something to do with the geocities js? maybe? I dunno, too lazy now. ----------------------------------- templest Sat Sep 25, 2004 8:57 am ----------------------------------- its fun... I can't get past 8 though, the other ones have been easy, the one javascript one with the code.length, I kinda took more than 3 minutes because I didn't notice the array was named code. But 8, it prolly has something to do with the geocities js? maybe? I dunno, too lazy now. Once you get it, you'll realize just how stupid you were for not doing so earlier. I smacked my head against the keyboard after finding out what it was. EDIT: I'm still stuck on 10. :? ----------------------------------- Cervantes Sat Sep 25, 2004 9:54 am ----------------------------------- the only thing i've notcied is that all the pages are http://academy.... but the URL for the source4.js is www.academy..... does this have anything to do with it? I'm so confused :? EDIT: WOOHOO!! I got it 8) You're right rizzix, that is tricky :evil: spoiler warning.. yep so i reduced the font size and made it white ----------------------------------- rizzix Sat Sep 25, 2004 11:05 am ----------------------------------- btw do u have code to 9, 8 and 7? ----------------------------------- templest Sat Sep 25, 2004 11:37 am ----------------------------------- the only thing i've notcied is that all the pages are http://academy.... but the URL for the source4.js is www.academy..... does this have anything to do with it? I'm so confused :? EDIT: WOOHOO!! I got it 8) You're right rizzix, that is tricky :evil: OMFG! :wall: Excuse me, while I go commit suicide. ----------------------------------- the_short1 Sat Sep 25, 2004 9:38 pm ----------------------------------- opk...jsut to help u all out here.. plus this is handy for other things.. www.update.mozilla.org download the Allow Right Click extension... it makes it so no mater what u can right click when using firefox,,, ENJOY... id post a direct link... but im too busy on level 5 < try to hack.... but i think im gona give upo.. ok.. i open the Level5.exe in ntoepade or wordpad.... and i see the password and username AlmostAHacker ZqrE01A2d yet it DONT WORK.... WTF? ----------------------------------- Paul Sat Sep 25, 2004 10:17 pm ----------------------------------- we're talking about the dydns one, or w/e its called. ----------------------------------- TheFerret Sun Sep 26, 2004 1:35 am ----------------------------------- UGGH, I am on #9 at the "hackit" site and I have it done but I am not sure what the country "password" is... I have seached for it and all I have come up with is hannover in Germany but it is wrong and I have found that it is in the US but when I tye that in, it is wrong... "a wrong answer" Sorry for the small hard to read print but I don't want to give stuff away... ----------------------------------- Cervantes Sun Sep 26, 2004 7:12 am ----------------------------------- Ferret: You have the password. They want a city for the password, not a country. theshort: right clicking is not a proble. There are so many ways to get around it. Rizzix: Why can't you get them yourself? too lazy to go back a few levels? :eh: EDIT EDIT EDIT: PMed you the codes rizzix. I finally beat level 11. I liked that level: its not tricky so you won't be doing it forever, but it takes thought. plus the final password for that level rules :D ----------------------------------- rizzix Sun Sep 26, 2004 11:24 am ----------------------------------- yep 11 was sort of like reverse engineering (well sort of cuz they give u the code) :) PS: thanks for the codes.. yep ur right.. i'm lazy. :P anyways i really dont want it to get easier.. i need more of a challenge here :P ----------------------------------- Cervantes Sun Sep 26, 2004 11:44 am ----------------------------------- err, why did you need the codes for 7 8 and 9 for level 12? I just beat it without em. for level 13, I suppose I need to decomple the pwd.class file somehow? ----------------------------------- TheFerret Sun Sep 26, 2004 11:58 am ----------------------------------- Wow, lvl 10 is soo stupid, I have read what other people have said and still can not figure it out... When I view the js file, it tells me about a math problem... ----------------------------------- Cervantes Sun Sep 26, 2004 12:12 pm ----------------------------------- a bloody interesting math problem at that! Just think about the code logically. Level 14 here I am. 13 was too easy, though it was a humourous way of hiding the password. :P ----------------------------------- rizzix Sun Sep 26, 2004 12:15 pm ----------------------------------- shoot :wall: ur right.. u just need the lvl 11 codes ----------------------------------- Cervantes Sun Sep 26, 2004 12:24 pm ----------------------------------- :lol: I didn't use level 11 source code either. why do you need to? we are talking about the one with the numberpad right? ----------------------------------- rizzix Sun Sep 26, 2004 12:39 pm ----------------------------------- no the previous one.. anyways.. the numberpad is annoying.. there are countless combinations.. which one is it? ----------------------------------- Cervantes Sun Sep 26, 2004 12:47 pm ----------------------------------- 2161 countless = 36(4*3*3) 4*3 as part of 4 factorial (not 4*3*2 because in all of them there is a repeated number). *3 for each possible combination (1134, 1126, 1223) aaugh level 14 is nuts. I really hope I don't actually have to understand the majority of what they coded. :? ----------------------------------- rizzix Sun Sep 26, 2004 1:07 pm ----------------------------------- hmm do u have to deassembled code with u? post it if u do.. ----------------------------------- Cervantes Sun Sep 26, 2004 3:21 pm ----------------------------------- err, deassembled code for level 13 you mean? You can download JCavaj at http://www.bysoft.se/sureshot/jcavaj/. Install it and you can get the code. PMed you the code, since you're lazy. :roll: :lol: ----------------------------------- TheFerret Sun Sep 26, 2004 3:47 pm ----------------------------------- hhhmmm, I still cannot get lvl 10 for some reason, something is not clicking in... Would someone PM it to me and how your got it... ----------------------------------- Cervantes Sun Sep 26, 2004 5:38 pm ----------------------------------- arrgh, can't seem to get the source code for level 15: when I do the 'open the URL in notepad' trick it is saying that it is not valid. That's no good :? any other ways of viewing the source? (being able to right click doesn't help me) ----------------------------------- Cervantes Sun Sep 26, 2004 6:58 pm ----------------------------------- lol!! I just cheated my way past level 15. If you have Firefox 1.0 or any previous version of firefox with the DOM inspector installed, typing the link to level 15 (the page that says CONGRATULATIONS! Security level 15) and then clicking inspect will change the URL that you typed in to the URL that says "CONGRATULATIONS, SECURITY LEVEL 16, ENTER" :D I have no idea what the username and password are :lol: ----------------------------------- Amailer Sun Sep 26, 2004 7:21 pm ----------------------------------- lol!! I just cheated my way past level 15. If you have Firefox 1.0 or any previous version of firefox with the DOM inspector installed, typing the link to level 15 (the page that says CONGRATULATIONS! Security level 15) and then clicking inspect will change the URL that you typed in to the URL that says "CONGRATULATIONS, SECURITY LEVEL 16, ENTER" :D I have no idea what the username and password are :lol: that could be hacking, not cheating... who knows :roll: ----------------------------------- Paul Sun Sep 26, 2004 8:54 pm ----------------------------------- lol!! I just cheated my way past level 15. If you have Firefox 1.0 or any previous version of firefox with the DOM inspector installed, typing the link to level 15 (the page that says CONGRATULATIONS! Security level 15) and then clicking inspect will change the URL that you typed in to the URL that says "CONGRATULATIONS, SECURITY LEVEL 16, ENTER" :D I have no idea what the username and password are :lol: that could be hacking, not cheating... who knows :roll: well yea, any tools can be used, as long as it woks, ya know? ----------------------------------- templest Sun Sep 26, 2004 9:36 pm ----------------------------------- lol!! I just cheated my way past level 15. If you have Firefox 1.0 or any previous version of firefox with the DOM inspector installed, typing the link to level 15 (the page that says CONGRATULATIONS! Security level 15) and then clicking inspect will change the URL that you typed in to the URL that says "CONGRATULATIONS, SECURITY LEVEL 16, ENTER" :D I have no idea what the username and password are :lol: That's actually how you're supposed to beat it, believe it or not; Kinda like lvl 8. P.S.: I beat lvl 16, right now before going to sleep. So I guess I don't have to give shorthair all my bits! :dance: ----------------------------------- Cervantes Mon Sep 27, 2004 5:17 pm ----------------------------------- That's how? Can't be. You're not actually getting the username and password and beating the level, you're just skipping to the next level. Say you were hacking some business' website and you wanted to get information on something and you needed the username and password, simply skipping by the page won't help you! have you figured out a way to view the source for level 15? ----------------------------------- templest Mon Sep 27, 2004 8:12 pm ----------------------------------- That's how? Can't be. You're not actually getting the username and password and beating the level, you're just skipping to the next level. Say you were hacking some business' website and you wanted to get information on something and you needed the username and password, simply skipping by the page won't help you! have you figured out a way to view the source for level 15? I hassled someone for the pass to 16. But for the record, when you're actually hacking into a site it's by any means necessary... so... if I could get the pass because someone wasn't diligent enough to keep their password secret, that's their fault, not mine. I just exploit the human bug. :) ----------------------------------- Dan Tue Sep 28, 2004 1:04 pm ----------------------------------- I hassled someone for the pass to 16. But for the record, when you're actually hacking into a site it's by any means necessary... so... if I could get the pass because someone wasn't diligent enough to keep their password secret, that's their fault, not mine. I just exploit the human bug. :) I whould think that social engering whould be just as vaild, affter all with todays deftion of hacking it dose count. ----------------------------------- djlenny_3000 Wed Sep 29, 2004 8:48 am ----------------------------------- PLEASE HELP, me n gigaman have been stuck on level 8 in hackits for days now, we cant find the damn password, can someone explain how it,s "right in front of us" anymore time doin this im gonna curl up in a corner and bang my head on the wall to a bloody pulp, help, or clean up the mess this is such a headache im gonna :wall: :wall: :wall: :wall: :wall: :wall: :wall: :wall: ARRRGGHH thnx 4 ur help ----------------------------------- templest Wed Sep 29, 2004 12:27 pm ----------------------------------- I hassled someone for the pass to 16. But for the record, when you're actually hacking into a site it's by any means necessary... so... if I could get the pass because someone wasn't diligent enough to keep their password secret, that's their fault, not mine. I just exploit the human bug. :) I whould think that social engering whould be just as vaild, affter all with todays deftion of hacking it dose count. I have to give your post a generous: "WTF? 'Sif!" Unauthorized use, or attempts to circumvent or bypass the security mechanisms of an information system or network. I certainly did "bypass" the "security mechanisms" of an "information system or network". Just because I didn't use conventional methods (ie: decompiling source-code) in-order to "bypass" the "security mechanisms", doesn't mean I didn't actually "bypass" it. I did "bypass" it, much more efficiently than any of you, might I add. :) ----------------------------------- rizzix Wed Sep 29, 2004 2:31 pm ----------------------------------- more efficiently than any of you, might I add. :) that is unnecessary.. and only partially correct ----------------------------------- Dan Wed Sep 29, 2004 2:44 pm ----------------------------------- I have to give your post a generous: "WTF? 'Sif!" Ummm, i was agering with you......saying that it was hacking........ ----------------------------------- templest Wed Sep 29, 2004 3:13 pm ----------------------------------- Heh, when I read "it dose count", I saw: "it doesn't count". There's always a possibility that you modded yours and my post in order for it to make me look like a jack-ass. ----------------------------------- Dan Wed Sep 29, 2004 3:21 pm ----------------------------------- Heh, when I read "it dose count", I saw: "it doesn't count". There's always a possibility that you modded yours and my post in order for it to make me look like a jack-ass. Now it whould the context realy make much scecn if i did mod it? Social engering in the context i was using it ment to tirck poleop in to giving you information like a password. Ie. what you did == social engering == moder term of hacking ----------------------------------- josh Wed Sep 29, 2004 5:41 pm ----------------------------------- if you are interested in social engineering you shuld read "the Art of Deception" by Kevin Mitnik. I am reading it right now and it is really interesting. It tells you stories and shows how social engineers can get any info. The stuff is pretty neat. It is written from the standpoint that they are trying to tell you how to protect your busness but in the process he tellls you exactly how social enginering works. It is facinating :D ----------------------------------- templest Wed Sep 29, 2004 6:18 pm ----------------------------------- if you are interested in social engineering you shuld read "the Art of Deception" by Kevin Mitnik. I am reading it right now and it is really interesting. It tells you stories and shows how social engineers can get any info. The stuff is pretty neat. It is written from the standpoint that they are trying to tell you how to protect your busness but in the process he tellls you exactly how social enginering works. It is facinating :D Who do you think invented the term "Social Engineering"? :? What do you take us for, BOOBS!? sorry... NOOBSZ??! ----------------------------------- josh Wed Sep 29, 2004 7:22 pm ----------------------------------- wooooooh, take it easy. I am knew to the social engineering so I just thought I would make that post. No need to blow up with it. I don't take u for a noob, I am a noob, so their I AM SORRY IF I OFFENDED YOUR SENSE OF SELF SUPERIORITY!!!!! ----------------------------------- templest Wed Sep 29, 2004 8:04 pm ----------------------------------- Heh, who's the spaz now? If the "BOOBZ!?" part didn't tip you off, Let me be a bit more direct... I'm being mildly sarcastic. :roll: ----------------------------------- josh Wed Sep 29, 2004 8:09 pm ----------------------------------- I am sorry, I overreacted. I thought you were making fun of me. Please accept my appology and we will forget this whole thing ever happened. ----------------------------------- rizzix Wed Sep 29, 2004 9:19 pm ----------------------------------- I am sorry, I overreacted. I thought you were making fun of me. Please accept my appology and we will forget this whole thing ever happened. this is not the first time (with templest).. and ur not the first one you know.. :lol: ----------------------------------- josh Wed Sep 29, 2004 9:24 pm ----------------------------------- thats good to know :D ----------------------------------- djlenny_3000 Thu Sep 30, 2004 7:47 am ----------------------------------- ya rosen u were wrong, now returning to the subject at hand and 4 days straight level 8 in starfleet, can someone explain how to find the password the code is var PUpage="76001079"; var PUprop="geocities"; var yviContents='http://us.toto.geo.yahoo.com/toto?s=76001079&l=NE&b=1&t=1093639008';yviR='us';yfiEA(0); SECURITY LEVEL 8 UserEingabe = window.prompt("password security level 8",""); document.location.href=UserEingabe + ".htm"; // --> if (window.Event) document.captureEvents(Event.MOUSEUP); function nocontextmenu() { event.cancelBubble = true event.returnValue = false; return false; } function norightclick(e) { if (window.Event) { if (e.which == 2 || e.which == 3) return false; } else if (event.button == 2 || event.button == 3) { event.cancelBubble = true event.returnValue = false; return false; } } document.oncontextmenu = nocontextmenu; document.onmousedown = norightclick; geovisit(); can someone please show me wher eth password is.[/code] ----------------------------------- gigaman Thu Sep 30, 2004 7:48 am need help still ----------------------------------- Yo me and djlenny are still stuck on level 8 the URL is http://academy.dyndns.org/number8.htm so if anyone has some advice can you please be a little more specific than it's right in front of you. ----------------------------------- josh Thu Sep 30, 2004 7:58 am ----------------------------------- be quite lenard. Y u have to but your nose into everything??? ----------------------------------- Dan Thu Sep 30, 2004 3:01 pm ----------------------------------- I just looked at it realy fast, is there any chance it is "login" as the pass? lol Seems to work from what i understand of the site, but if i am right that is the dumested thing i have ever seen. ----------------------------------- Paul Thu Sep 30, 2004 3:18 pm ----------------------------------- I thought it had something to do with the geocities banner that appears ONLY in this challenge :?: ----------------------------------- rizzix Thu Sep 30, 2004 3:24 pm ----------------------------------- that is there to mess up ur mind.. which as u see.. did a pretty good job :P ----------------------------------- Dan Thu Sep 30, 2004 3:24 pm ----------------------------------- I thought it had something to do with the geocities banner that appears ONLY in this challenge :?: Well if we read the code we whould know that it dose not check the password entered but insted just loads a page based on this password ie passuentered.htm Now when we look at all the fines in the dir it is loading from the only .htm files are the site with the password screen and the one that says congergualtions with is caled login.htm so if one enters login as the pass it will load the page login.htm i could be totaly wrong tho, it did seem to easy but it also seemed to work. ----------------------------------- djlenny_3000 Thu Sep 30, 2004 4:39 pm ----------------------------------- Well if we read the code we whould know that it dose not check the password entered but insted just loads a page based on this password ie passuentered.htm Now when we look at all the fines in the dir it is loading from the only .htm files are the site with the password screen and the one that says congergualtions with is caled login.htm so if one enters login as the pass it will load the page login.htm i could be totaly wrong tho, it did seem to easy but it also seemed to work. i dont see where it say login i understood righ taway that what u enter is the htm it will go to because when i oush cancel it goes to null.htm can u explain where u got the password to be "login" oh and thanks for the help it was a huge headache relieved :) ----------------------------------- Dan Thu Sep 30, 2004 5:12 pm ----------------------------------- as i side (or tryed to), the passowrd is login b/c the page you are trying to get to is login.htm. I found this out by simpley looking at the code and seeing that all it did was load a page given the file name and then i looked in the dir where it was loading pages and all that was in there where 2 htm files, the login.htm one and the one where you got that code from. ----------------------------------- Paul Thu Sep 30, 2004 5:17 pm ----------------------------------- interesting, so u look at the dir... lol btw, level 9 is really ez. ----------------------------------- djlenny_3000 Thu Sep 30, 2004 5:21 pm ----------------------------------- ya lvl 9 is easy if u clear the clutter, the 1 im stuck on is 10 i figured out that the math problem has NOTHINg to do with it . so i looked more and more but now my eyeshurt, i can just imagine how 2morows compsci clas with gigaman is gonna be, 1 hour 20 minutes of staring at html code, YAY FUN ----------------------------------- Paul Thu Sep 30, 2004 5:24 pm ----------------------------------- you don't need to clear the clutter, all u need to do is change the bg color -_-, I can't imagine going and deleting all the color codes. ----------------------------------- djlenny_3000 Thu Sep 30, 2004 5:26 pm ----------------------------------- no all i did was replace and