donmatos Posted April 21, 2006 Share Posted April 21, 2006 hi i just want to test your capacitys: what is the passwd of this html-javascript_ <HTML> <HEAD> <TITLE>Null</TITLE> <SCRIPT> var string = "8ac249fbd363fx52j1"; var enigma = ""; var whatisthis = "var myxor = prompt('Password:','');for (y=1; y<5; y++) {enigma += (string.indexOf(y)+1);}enigma += 5;if (myxor==enigma){enigma = enigma + '.php';location.href=enigma;}else{location.href='hahaha.php';}"; eval(whatisthis); </SCRIPT> </HEAD> <BODY> </BODY> </HTML> Link to comment Share on other sites More sharing options...
Genecks Posted April 21, 2006 Share Posted April 21, 2006 Somewhere in this following block of text: var string = "8ac249fbd363fx52j1";var enigma = ""; var whatisthis = "var myxor = prompt('Password:','');for (y=1; y<5; y++) {enigma += (string.indexOf(y)+1);}enigma += 5;if (myxor==enigma){enigma = enigma + '.php';location.href=enigma;}else{location.href='h ahaha.php';}" Link to comment Share on other sites More sharing options...
Nevermore Posted April 21, 2006 Share Posted April 21, 2006 ' else y=1; Link to comment Share on other sites More sharing options...
vanillity Posted April 21, 2006 Share Posted April 21, 2006 try hackerslab.org everything you need to know there! Link to comment Share on other sites More sharing options...
Aeternus Posted April 21, 2006 Share Posted April 21, 2006 Look, these aren't hard.... they aren't complicated.... and they certainly don't prove anything about your skills in computing. There is a Hacking Challenges thread further down. PLEAASEE use that instead of spamming these stupid challenges in their own threads. With regard to what the password is, it is 1841055. As the index of 1 in the string is 17 + 1 = 18, the index of 2 is 3 + 1 = 4, the index of 3 is 9 + 1 = 10, the index of 4 is 4 + 1 = 5 and it adds an additional 5 at the end like so - 18 + 4 + 10 + 5 + 5, and as it is interpretting these as strings due to the use of characters from the indexOf call, they are added as strings and so are appended to the enigma string instead of being added like numbers producing the above password. You don't even need to do any of that however, as you can simply replace the redirect in the code with "alert(enigma)" and simply get it to tell you the password. Now PPPPLLLLEASEEE just use the hacking challenges thread, as these things in my opinion certainly don't deserve their own threads. Hacking Challenges Thread Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now