Close

Page 1 of 2 12 LastLast
Results 1 to 20 of 33

Thread: Hacking puzzle

  1. #1
    DF Rookie TKay's Avatar
    Join Date
    Oct 2001
    Location
    UK
    Posts
    22
    Thanks
    0
    Thanked:        0
    Karma Level
    0

    Default Hacking puzzle

    Yet another one:



    http://www.try2hack.nl

    --
    The hardest thing in this world is to live in it

  2. #2
    Spectracide
    Guest Spectracide's Avatar

    Default

    Made it to level 2

  3. #3
    DF VIP Member Gavin M's Avatar
    Join Date
    Jul 2001
    Location
    newcastle
    Posts
    1,831
    Thanks
    0
    Thanked:        0
    Karma Level
    361

    Default

    my m8 on icq showed me a page similar to that he got threw the hole thing with no problems i'll give him the link and see what he can do

  4. #4
    bridger
    Guest bridger's Avatar

    Default

    Yup - got to level 2 myself - and Im stumped - suggestions plz?!

  5. #5
    DF VIP Member Nookie_Bear's Avatar
    Join Date
    Jul 2001
    Location
    Exile in N.I.
    Posts
    599
    Thanks
    0
    Thanked:        0
    Karma Level
    320

    Default

    Got stuck on level 4.

    Decompiled the java, but still none the wiser, no idea where the file it reads is comming from.

    TBH should be working, but prob. could crack it given the time
    NtB
    We'll be coming...

  6. #6
    DF VIP Member Nookie_Bear's Avatar
    Join Date
    Jul 2001
    Location
    Exile in N.I.
    Posts
    599
    Thanks
    0
    Thanked:        0
    Karma Level
    320

    Default

    Originally posted by bridger
    Yup - got to level 2 myself - and Im stumped - suggestions plz?!
    Think how the password is stored, and how you might be able to view where it is defined.
    NtB
    We'll be coming...

  7. #7
    DF VIP Member Fett's Avatar
    Join Date
    May 2002
    Location
    Merseyside
    Posts
    1,122
    Thanks
    0
    Thanked:        0
    Karma Level
    331

    Default

    Level 4 has me stumped

    As for your level 2 problem maybe you will have a flash of genius and work it out.

  8. #8
    DF VIP Member Fett's Avatar
    Join Date
    May 2002
    Location
    Merseyside
    Posts
    1,122
    Thanks
    0
    Thanked:        0
    Karma Level
    331

    Default

    Nookie_Bear that text file you have posted is not the decompiled code . Thats why you are so puzzled . Heres the code . You will defintely work it out now


    import java.applet.Applet;
    import java.applet.AppletContext;
    import java.awt.*;
    import java.awt.event.ActionEvent;
    import java.awt.event.ActionListener;
    import java.io.*;
    import java.net.MalformedURLException;
    import java.net.URL;
    import java.util.EventObject;

    public class PasswdLevel4 extends Applet
    implements ActionListener
    {

    public PasswdLevel4()
    {
    inuser = new String[22];
    totno = 0;
    countConn = null;
    countData = null;
    inURL = null;
    txtlogin = new TextField();
    label1 = new Label();
    label2 = new Label();
    label3 = new Label();
    txtpass = new TextField();
    lblstatus = new Label();
    ButOk = new Button();
    ButReset = new Button();
    lbltitle = new Label();
    }

    void ButOk_ActionPerformed(ActionEvent actionevent)
    {
    boolean flag = false;
    for(int i = 1; i <= totno / 2; i++)
    if(txtlogin.getText().trim().toUpperCase().intern() == inuser[2 * (i - 1) + 2].trim().toUpperCase().intern() && txtpass.getText().trim().toUpperCase().intern() == inuser[2 * (i - 1) + 3].trim().toUpperCase().intern())
    {
    lblstatus.setText("Login Success, Loading..");
    flag = true;
    String s = inuser[1].trim().intern();
    String s1 = getParameter("targetframe");
    if(s1 == null)
    s1 = "_self";
    try
    {
    finalurl = new URL(getCodeBase(), s);
    }
    catch(MalformedURLException _ex)
    {
    lblstatus.setText("Bad URL");
    }
    getAppletContext().showDocument(finalurl, s1);
    }

    if(!flag)
    lblstatus.setText("Invaild Login or Password");
    }

    void ButReset_ActionPerformed(ActionEvent actionevent)
    {
    txtlogin.setText("");
    txtpass.setText("");
    }

    public void actionPerformed(ActionEvent actionevent)
    {
    Object obj = actionevent.getSource();
    if(obj == ButOk)
    {
    ButOk_ActionPerformed(actionevent);
    return;
    }
    if(obj == ButReset)
    ButReset_ActionPerformed(actionevent);
    }

    public void destroy()
    {
    ButOk.setEnabled(false);
    ButReset.setEnabled(false);
    txtlogin.setVisible(false);
    txtpass.setVisible(false);
    }

    public void inFile()
    {
    new StringBuffer();
    try
    {
    countConn = inURL.openStream();
    countData = new BufferedReader(new InputStreamReader(countConn));
    String s;
    while((s = countData.readLine()) != null)
    if(totno < 21)
    {
    totno = totno + 1;
    inuser[totno] = s;
    s = "";
    } else
    {
    lblstatus.setText("Cannot Exceed 10 users, Applet fail start!");
    destroy();
    }
    }
    catch(IOException ioexception)
    {
    getAppletContext().showStatus("IO Error:" + ioexception.getMessage());
    }
    try
    {
    countConn.close();
    countData.close();
    return;
    }
    catch(IOException ioexception1)
    {
    getAppletContext().showStatus("IO Error:" + ioexception1.getMessage());
    }
    }

    public void init()
    {
    setLayout(null);
    setSize(361, 191);
    add(txtlogin);
    txtlogin.setBounds(156, 72, 132, 24);
    label1.setText("Please Enter Login Name & Password");
    label1.setAlignment(1);
    add(label1);
    label1.setFont(new Font("Dialog", 1, 12));
    label1.setBounds(41, 36, 280, 24);
    label2.setText("Login");
    add(label2);
    label2.setFont(new Font("Dialog", 1, 12));
    label2.setBounds(75, 72, 36, 24);
    label3.setText("Password");
    add(label3);
    add(txtpass);
    txtpass.setEchoChar('*');
    txtpass.setBounds(156, 108, 132, 24);
    lblstatus.setAlignment(1);
    label3.setFont(new Font("Dialog", 1, 12));
    label3.setBounds(75, 108, 57, 21);
    add(lblstatus);
    lblstatus.setFont(new Font("Dialog", 1, 12));
    lblstatus.setBounds(14, 132, 344, 24);
    ButOk.setLabel("OK");
    add(ButOk);
    ButOk.setFont(new Font("Dialog", 1, 12));
    ButOk.setBounds(105, 156, 59, 23);
    ButReset.setLabel("Reset");
    add(ButReset);
    ButReset.setFont(new Font("Dialog", 1, 12));
    ButReset.setBounds(204, 156, 59, 23);
    lbltitle.setAlignment(1);
    add(lbltitle);
    lbltitle.setFont(new Font("Dialog", 1, 12));
    lbltitle.setBounds(12, 14, 336, 24);
    String s = getParameter("title");
    lbltitle.setText(s);
    ButOk.addActionListener(this);
    ButReset.addActionListener(this);
    infile = new String("level4");
    try
    {
    inURL = new URL(getCodeBase(), infile);
    }
    catch(MalformedURLException _ex)
    {
    getAppletContext().showStatus("Bad Counter URL:" + inURL);
    }
    inFile();
    }

    private URL finalurl;
    String infile;
    String inuser[];
    int totno;
    InputStream countConn;
    BufferedReader countData;
    URL inURL;
    TextField txtlogin;
    Label label1;
    Label label2;
    Label label3;
    TextField txtpass;
    Label lblstatus;
    Button ButOk;
    Button ButReset;
    Label lbltitle;
    }

  9. #9
    DF VIP Member Nookie_Bear's Avatar
    Join Date
    Jul 2001
    Location
    Exile in N.I.
    Posts
    599
    Thanks
    0
    Thanked:        0
    Karma Level
    320

    Default

    cheers m8, got it no bother with that!

    These cheap 'demo' decompilers!
    NtB
    We'll be coming...

  10. #10
    DF Admin xdam's Avatar
    Join Date
    Oct 2000
    Location
    Stoke
    Posts
    1,481
    Thanks
    163
    Thanked:        183
    Karma Level
    367

    Default

    im still stupmed on 2

  11. #11
    DF VIP Member Panda's Avatar
    Join Date
    Nov 2000
    Location
    Somewhere
    Posts
    1,053
    Thanks
    0
    Thanked:        0
    Karma Level
    333

    Default

    xdam,

    You have pm.

    This site is great fun - I'm about to start level 9
    New rules for cable & satellite
    from 15th March 2005
    do some reading and avoid a ban.


  12. #12
    DF Admin xdam's Avatar
    Join Date
    Oct 2000
    Location
    Stoke
    Posts
    1,481
    Thanks
    163
    Thanked:        183
    Karma Level
    367

    Default

    thanks mate

  13. #13
    DF VIP Member Fett's Avatar
    Join Date
    May 2002
    Location
    Merseyside
    Posts
    1,122
    Thanks
    0
    Thanked:        0
    Karma Level
    331

    Default

    Level 9 is going to their IRC channel and hacking the BOT .

    I have no clues about hacking etc . Id probably just see what bot there using and try find an exploit .

    I havent had a proper look at level 5 yet .

    Also xdam at first I thought the answers could all be found just within the site basicly , you need tools etc. Dont worry you will work it out (Hurry please and help me on level 5)

  14. #14
    DF VIP Member
    mark1984's Avatar
    Join Date
    Apr 2001
    Location
    England
    Posts
    504
    Thanks
    25
    Thanked:        6
    Karma Level
    301

    Default

    can someone please point me in the right direction for some tools or some help to get past level 2.

    Thanks

  15. #15
    DF VIP Member Fett's Avatar
    Join Date
    May 2002
    Location
    Merseyside
    Posts
    1,122
    Thanks
    0
    Thanked:        0
    Karma Level
    331

    Default

    *HINT* What does the page use to generate the password box?

  16. #16
    DF VIP Member Panda's Avatar
    Join Date
    Nov 2000
    Location
    Somewhere
    Posts
    1,053
    Thanks
    0
    Thanked:        0
    Karma Level
    333

    Default

    Fett,

    To do level 5, you need to do what you helped Nookie_Bear do on level 4 (although you didn't need to do in then ). You will have major problems getting the right tools, but when you give up, I have what you need
    New rules for cable & satellite
    from 15th March 2005
    do some reading and avoid a ban.


  17. #17
    DF VIP Member Fett's Avatar
    Join Date
    May 2002
    Location
    Merseyside
    Posts
    1,122
    Thanks
    0
    Thanked:        0
    Karma Level
    331

    Default

    Hi panda

    Ive decompiled the exe using an easy online VB3 decompiler.

    I have the files but cant for the life of me work it out . Ive never looked at VB code.
    Update: Worked it out the old fashioned way with pen and paper.
    Last edited by Fett; 26th May 2002 at 07:54 PM.

  18. #18
    DF VIP Member Conkers's Avatar
    Join Date
    Jun 2001
    Location
    Out Here !
    Posts
    2,060
    Thanks
    62
    Thanked:        157
    Karma Level
    448

    Default

    nah... I'm stumped on level 2 !

  19. #19
    DF VIP Member Panda's Avatar
    Join Date
    Nov 2000
    Location
    Somewhere
    Posts
    1,053
    Thanks
    0
    Thanked:        0
    Karma Level
    333

    Default

    For all of you stuck on level 2, search your C: drive and see what files have been written since you accessed level 2 - one of those is the file that produces the login prompt - might be worth looking at it !
    New rules for cable & satellite
    from 15th March 2005
    do some reading and avoid a ban.


  20. #20
    DF VIP Member Conkers's Avatar
    Join Date
    Jun 2001
    Location
    Out Here !
    Posts
    2,060
    Thanks
    62
    Thanked:        157
    Karma Level
    448

    Default

    nah... I'm dumb as f**k !

    Using explorer in win2000 to search my C drive on files modified turns up nowt ! But I'm not giving in............. yet !! :

Page 1 of 2 12 LastLast

Similar Threads

  1. Gamecube Hacking/Dev/Backup?
    By John Tormento in forum Nintendo Consoles
    Replies: 10
    Last Post: 14th October 2002, 05:09 PM
  2. Hacking Franklin Bookman handhelds to do other stuff
    By tinman in forum Home Audio/Video, Electronic Toys & Gadgets
    Replies: 0
    Last Post: 25th September 2002, 03:28 PM
  3. Largo Slide Puzzle
    By brian5590 in forum PC Gaming
    Replies: 2
    Last Post: 22nd September 2002, 05:13 PM
  4. Replies: 5
    Last Post: 6th September 2002, 07:53 PM

Social Networking Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •