RE: hax.tor
- From: "Melissa" <missy.augustine@xxxxxxxxx>
- Date: Tue, 27 Nov 2007 22:14:52 -0500
I may be missing the obvious here... but how the heck do I get past 2? I
know how to do the banner grab and all that, but where do I input what I got
to continue on? So frustrating, and I am drinking some tea and it's not
helping me see what I should be doing! Caffeine shmaffeine
-----Original Message-----
From: listbounce@xxxxxxxxxxxxxxxxx [mailto:listbounce@xxxxxxxxxxxxxxxxx] On
Behalf Of Captain Bock
Sent: Tuesday, November 27, 2007 12:09 PM
To: security-basics@xxxxxxxxxxxxxxxxx
Subject: Re: hax.tor
It's easier to add "?chosen=Pear" after the URL.
Works great
Captain Bock
On Nov 26, 2007 9:23 PM, jeffrey rivero <jeffr76@xxxxxxxxx> wrote:be
:)
use an inline HTML editor or a debug tool and edit the Options of the
form (you can change one to pear)
:)
Daniel Grant wrote:
Level 3 has completely got me too - I tried all sorts, but either im
short on coffee or not bright enough.
Anyone got it yet?
Rivest, Philippe wrote:
They just want to see if you can do a banner grabbing, theres really
nothing to it.
But I do agree that choosing the FBI is a very very VERY bad way to
Tamásserious, it is sending out the Hacker VS the law image and I would go
against this.
Anyhow anyone that can give me a hint to pass level 3 would be
appreciated; I tried saving the source to my pc and adding Pear as a
value. Didn't know
Any clue?
Merci
Philippe Rivest
Métro Richelieu
Analyste en sécurité & Certified Ethical Hacker
514-662-3300x3115
P Est-ce vraiment nécessaire d'imprimer cette page ?
-----Message d'origine-----
De : listbounce@xxxxxxxxxxxxxxxxx
[mailto:listbounce@xxxxxxxxxxxxxxxxx] De la part de Zimler Attila
Envoyé : lundi 26 novembre 2007 12:29
À : 0x90
Cc : security-basics@xxxxxxxxxxxxxxxxx
Objet : Re: hax.tor
0x90 wrote:
Dear List,
let me bring to your attention a site that deals with basic
security issues presented in a hackme-fashion way. You advance
on very easy levels that have hints to them and will teach
you something useful in everyday IT sec. Examples:
- exploiting buggy custom PHP scripts: bugs are taken from real life
- SQL injection
- decoding an MSSQL password from a sniffed login sequence
- decoding wcx_ftp.ini passwords
- googling the smart way
- looking up virtualhosts on a webserver
- spoofing http headers
- exploiting legal usage of web services for misc purposes
- basic mathematics: base. binary, equation
- realistic and (legal) _REALITY_ missions
- recognizing and decoding md5/des/base64/etc
- google word game ( telnet://hax.tor.hu )
- forging a DNS request
- decrypting MS-Word documents
- out-of-the-box thinking
Along the levels, you will find funny pictures to relax with,
music to listen to, maybe even ascii cow art :-)
If you are interested in the above, you may check it out here. (this
is a minimalistic site, there are no ads or overcrowded menus)
http://hax.tor.hu/
Have a nice day,
0x90
What do you want to SSH connect to FBI-s homepage?
If this is a game, why don't you provide yourself the target for
scanning it?
Attila
- References:
- hax.tor
- From: 0x90
- Re: hax.tor
- From: Zimler Attila Tamás
- RE: hax.tor
- From: Rivest, Philippe
- Re: hax.tor
- From: Daniel Grant
- Re: hax.tor
- From: jeffrey rivero
- Re: hax.tor
- From: Captain Bock
- hax.tor
- Prev by Date: Re: IT Security project
- Next by Date: RE: Securing workstations from IT guys
- Previous by thread: Re: hax.tor
- Next by thread: Re: hax.tor
- Index(es):
Relevant Pages
|
|
