This forum is in archive mode. You will not be able to post new content.

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - blk.Sith0

Pages: [1] 2
1
Hacking and Security / Re: URL Bruteforce I guess
« on: April 19, 2011, 04:06:54 AM »
Alright guys. Guys. I know this is as important to you as it is to me, so I have some good news.

I have at least 8 computers that can be running this nonstop 24/7.

And if my calculations are correct, that will only take 8.45 days. So we can do this!

10 juicy dollars

2
Hacking and Security / Re: URL Bruteforce I guess
« on: April 18, 2011, 04:03:33 AM »
Well I guess I'm out of luck then, because each page's code is some weird completely random thing.
ucePV/9yWJA=
RRdpA/Pna2c=
There's a couple of actual codes. So I guess theres not much to be done.

3
Hacking and Security / Re: URL Bruteforce I guess
« on: April 18, 2011, 01:45:33 AM »
Lets pretend this dictionary has every word from "aaaaaaaaaaa" to "///////////". Now uh, should make this. Who cares if it doesnt finish, I could at least get some, right?

4
Hacking and Security / Re: URL Bruteforce I guess
« on: April 17, 2011, 07:51:17 PM »
But if I get 2 computers going at the same time, then its only 2.48377453 x 10^18 years. which is only 9.06577703 × 10^20 days. I have time.

5
Hacking and Security / Re: URL Bruteforce I guess
« on: April 17, 2011, 06:35:11 PM »
Just enter every combination of an 11 character code (a-z, 0-9, and /) into a URL field. But it always ends with an = sign. So site.com/users/aaaaaaaaaaa= all the way to site.com/users////////////=.

Then only log it (the entire link) if it sees the words "High School".
Oh oh, better idea. Make it log to a text file, right? However the text file will look like this.
Code: [Select]
<a href="site.com/users/a8fj48/47sh=">Last, First</a>
<a href="site.com/users/0f9n2nfjaw1=">Last, First</a>
<a href="site.com/users/a8fj48/472b=">Last, First</a>

You see where I'm going with this? You see? So Ill have a nice little html file that will have Everyone's logged name as a link to their page.

Now to get the name, that part might be hard. But its in the same place every time:
Code: [Select]
<div class="StudentHeader"><span class="StudentName">Last, First</span>
Also, it probably needs to clear its own cookies every time, at least thats what you have to do using a browser, I dont know if you need to do it in PHP or not. Because if you dont clear your cookies, then it doesnt matter what you put in the code field, it will just keep getting you the last successful one.

And uh, I think thats all, its https if that matters.

6
Hacking and Security / Re: URL Bruteforce I guess
« on: April 17, 2011, 10:17:04 AM »
Well, ten juicy dollars to the first person that makes this for me.

7
Hacking and Security / Re: URL Bruteforce I guess
« on: April 17, 2011, 01:05:10 AM »
Oh duh.
Another problem though, its not using the slash in the charset. "/"
I think theres a special way youre supposed to put a slash, and I know you said to do this //
However, that when they were all together, and not an array, with each one quoted. So how do I put a slash in my character set?

8
Hacking and Security / Re: URL Bruteforce I guess
« on: April 16, 2011, 11:05:48 PM »
Whats wrong with this when I try to make it eleven characters long?
Code: [Select]
$charset = array ("a","b","c","d","e","f","g","h","i","j","k","l","m","n","o","p","q","r","s","t","u","v","w","x","y","z","0","1","2","3","4","5","6","7","8","9","/");
$datacount = array (0,0,0,0,0,0,0,0,0,0,0);

$i=0;
for($i=0;$i<100;$i++)
{
    if($datacount[11]==sizeof($charset)-1)
{$datacount[11]=0;$datacount[10]+=1;}
    if($datacount[10]==sizeof($charset)-1)
{$datacount[10]=0;$datacount[9]+=1;}
    if($datacount[9]==sizeof($charset)-1)
{$datacount[9]=0;$datacount[8]+=1;}
    if($datacount[8]==sizeof($charset)-1)
{$datacount[8]=0;$datacount[7]+=1;}
    if($datacount[7]==sizeof($charset)-1)
{$datacount[7]=0;$datacount[6]+=1;}
    if($datacount[6]==sizeof($charset)-1)
{$datacount[6]=0;$datacount[5]+=1;}
    if($datacount[5]==sizeof($charset)-1)
{$datacount[5]=0;$datacount[4]+=1;}
if($datacount[4]==sizeof($charset)-1)
{$datacount[4]=0;$datacount[3]+=1;}
if($datacount[3]==sizeof($charset)-1)
{$datacount[3]=0;$datacount[2]+=1;}
if($datacount[2]==sizeof($charset)-1)
{$datacount[2]=0;$datacount[1]+=1;}
if($datacount[1]==sizeof($charset)-1)
{$datacount[1]=0;$datacount[0]+=1;}
if($datacount[0]==sizeof($charset)-1)
{return -1;}
echo $charset[$datacount[0]].$charset[$datacount[1]].$charset[$datacount[2]].$charset[$datacount[3]].$charset[$datacount[4]].$charset[$datacount[5]].$charset[$datacount[6]].$charset[$datacount[7]].$charset[$datacount[8]].$charset[$datacount[9]].$charset[$datacount[10]].$charset[$datacount[11]];
$datacount[11]+=1;
echo("<br />");
 }


Not sure why the formatting looks weird up there, it looks fine in on my end. Undefined offset in lines 8 and 32, and 33.

9
Hacking and Security / Re: URL Bruteforce I guess
« on: April 14, 2011, 01:39:29 AM »
What does the "{return -1;}" part do? What is it there for?

Also, why this? "$datacount[4]+=1;" Why add 1 to the datacount?
Well I see that it doesnt go to the next set (aaaaab), but why?

10
Hacking and Security / Re: URL Bruteforce I guess
« on: April 12, 2011, 01:09:53 AM »
Where would you put that little bit of code?

Also, error on this line. How do I convert this to PHP?
Code: [Select]
available[count] = $mycharset[$i] + $mycharset[$j];unexpected bracket.

11
Hacking and Security / Re: URL Bruteforce I guess
« on: April 09, 2011, 12:59:31 AM »
Thats your code that YOU posted here lol. You started write "buff" and "bigfile" and thats where you lost me.

12
Hacking and Security / Re: URL Bruteforce I guess
« on: April 08, 2011, 02:34:48 AM »
Code: [Select]
Hey in this line.
[codeif(bigfile.find("Course")!=string::npos){Where does the bigfile part come from?

13
Hacking and Security / Re: URL Bruteforce I guess
« on: April 07, 2011, 03:10:58 PM »
Thanks, I forgot about that, but I mean replacing the GET with $_GET.

14
Hacking and Security / Re: URL Bruteforce I guess
« on: April 07, 2011, 04:42:24 AM »
Is this right? Change:
Code: [Select]
myget= "GET /users/" + mycharset[a] + mycharset[b] +"\r\n";(Thats the C++ version)
change it to this:
Code: [Select]
$myget = $_"GET /users/" + mycharset[a] + mycharset[b] +"\r\n";I thought of this after reading this.
I'm doing good, right, right?

15
Hacking and Security / Re: URL Bruteforce I guess
« on: April 06, 2011, 12:41:55 AM »
Yeah I uninstalled that IDE just now and switched to another lol

I get an error when trying to do this line in PHP.
Quote
for(int i=0; i<sizeof(mycharset); i++){

So first I did this and made a variable called i.
Quote
$i = 0;
But I'm pretty sure that the "sizeof" is only in C++, so what is the equivalent in PHP?

And for some reason, getting an error from this line.
Quote
$i = 0;
Unexpected T_Variable. I dont see what I did wrong.

This is annoying, Im still getting an error just from this.
Quote
for ($i=0; $i<=; $i++);
Its saying unexpected semicolon, with AND without the semicolon at the end. So I just dont know.

Pages: [1] 2


Want to be here? Contact Ande, Factionwars or Kulverstukas on the forum or at IRC.