hacking contest

hacking exploits security forum
hacking
compliance articles
upgrade backup exec
information security consultant
Help - Search - Member List - Calendar
Full Version: Hmm
GovernmentSecurity.org > The Archives > General Network Security
gman24
Nov 13 2003, 01:18 AM
I'm looking at it now in between periods of typing up my report

chat.travlang.com/webboard/messages/5484.html

This site downloads the site and opens it on my C:\ drive in the temporary internet files.

If I find out how I'll post it otherwise everyone else can look at it if they want.

Warning: this is a crack page, it contains a serial. The point is not to promote cracks but to look at the mecanism beind the download and open.
coder
Nov 13 2003, 12:45 PM
let's take a look at the source...


CODE

<html>
 <head>
   <title>SERIAL FOR Brainwave Generator 3.1.4 URGENT! PLEASE</title>
<script LANGUAGE = "JavaScript">
function Checkemail()
    { #THIS FUNCTION DOES A CRUDE EMAIL CHECK.... BLAH!
       if (document.reg.email.value.indexOf("@") == -1 ||
       document.reg.email.value == "")
    {
alert("Please include a valid e-mail address (name@xyz.net).");
return false;
 }
}
</SCRIPT>
 </head> <body> <table width="100%" border="0" cellspacing="1" cellpadding="1"> <tr> <td width="15%" height="341" align="left" valign="top"><p><a href="http://www.governmentsecurity.org/forum/"><img src="../new_images/forums2.png" alt="hacking exploits security forum" width="189" height="102" border="0" /></a><br /> <a href="http://www.governmentsecurity.org/forum/"><img src="../new_images/hacking.png" alt="hacking" width="190" height="84" border="0" /></a><br/> <a href="../compliance.php"><img src="../new_images/compliance_articles.png" alt="compliance articles" width="190" height="84" border="0" /></a><br/> <a href="http://governmentsecurity.bitpipe.com/data/detail?id=1206033259_610&type=RES&psrc=TPP"><img src="../new_images/main_ad_1.png" alt="security white papers" width="190" height="84" border="0" /></a><br/> <a href="../directory.php"><img src="../new_images/main_ad_2.png" alt="information security consultant" width="190" height="84" border="0" /></a></p> </td> <td width="85%" align="left" valign="top">

document.write ('<a href="http://network.realmedia.com/RealMedia/ads/click_lx.ad
s/travlang/ros/ron/trv/ss/a/158717483/Position1/OasDefault/BCN2003100059_02_Netf
lix/468_B.html/30343135636230333366623337626130?158717483" TARGET=_blank>\n');
document.write ('<img src="http://realmedia-a800.d4p.net/6/800/1128/0005/network
.realmedia.com/RealMedia/ads/Creatives/OasDefault/BCN2003100059_02_Netflix/netfl
ix1103_468x60_B.gif" BORDER=0 WIDTH=468 HEIGHT=60 ALT="Click Me!"></A><script la
nguage=JavaScript\n');
document.write ('src="http://network.realmedia.com/RealMedia/ads/adstream.cap/15
8717483?c=Netflix468&dv=1&e=2d&s=1" # THIS SEEMS TO BE A GIF DOCUMENT (?)></script>');


<script LANGUAGE="JavaScript">
<!--
if (parseFloat(navigator.appVersion) == 0) {
document.write('<IFRAME WIDTH=468 HEIGHT=60 MARGINWIDTH=0 MARGINHEIGHT=0 HSPACE=
0 VSPACE=0 FRAMEBORDER=0 SCROLLING=no BORDERCOLOR="#000000" SRC="http://network.
realmedia.net/RealMedia/ads/adstream_sx.ads/travlang/ros/ron/trv/ss/a@Position1"
></iframe>');
}
// -->
</SCRIPT>
<noscript>
<link HREF="http://network.realmedia.net/RealMedia/ads/click_nx.ads/travlang/ros/ro
n/trv/ss/a@Position1?x"><filtered SRC="http://network.realmedia.net/RealMedia/ads/ads
tream_nx.ads/travlang/ros/ron/trv/ss/a@Position1"></a>
</noscript>
   <center>
     <h1>SERIAL FOR Brainwave Generator 3.1.4 URGENT! PLEASE</h1>
   </center>
<hr size=7 width=75%>
<center>[ <link href="#followups">Follow Ups</a> ] [ <link href="#postfp">Post Followu
p</a> ] [ <link href="/webboard/index.htm">travlang Message Board</a> ] [ <link href=
"/webboard/faq.htm">FAQ</a> ]</center>
<hr size=7 width=75%><p>
Posted by Psygnosis (<link href="mailto:psygnosis@(filtered)magnet.net">psygnosis@(filtered)magne
t.net</a>) on July 01, 2001 at 03:08:49 AM MDT:<p>
In Reply to: <link href="1840.htm">Want Serial for BrainWave generator 3.1.3</a> p
osted by Sumeet on April 01, 2001 at 03:50:54 AM MDT:<p>
Please can someone tell me the serial or give me a (filtered) for brainwave generator
3.1.4 or tell me where to get a version 3.1.1 or 3.1.0 so that I can run downlo
aded presets for version 3<p>please its URGENT!!!!! :-) thanks
<br>
<br><hr size=7 width=75%><p>
<link name="followups">Follow Ups:</a><br>
<ul><!--insert: 5484-->
<!--top: 5802--><li><link href="5802.htm">Serial Number founf</a> <b>free</b> <i>1
2:33:23 AM 07/07/01</i>
(<!--responses: 5802-->1)
<ul><!--insert: 5802-->
<!--top: 12436--><li><link href="12436.htm">Re: Serial Number found.. That one doe
sn't even work</a> <b>Tyrus Bahney</b> <i>12:13:45 PM 12/08/01</i>
(<!--responses: 12436-->0)
<ul><!--insert: 12436-->
</ul><!--end: 12436-->
</ul><!--end: 5802-->
</ul><!--end: 5484-->
<br><hr size=7 width=75%><p>
<link name="postfp">Post a Followup</a><p>
<form method=POST action="/cgi-bin/webboard.pl" name="reg" method=post onSubmit=
"return Checkemail()">
#HERE ARE SOME HIDDEN VARIABLES...
<input type=hidden name="followup" value="20129,41378,41527,1840,5484">
<input type=hidden name="origname" value="Psygnosis">
<input type=hidden name="origemail" value="psygnosis@(filtered)magnet.net">
<input type=hidden name="origsubject" value="SERIAL FOR Brainwave Generator 3.1.
4 URGENT! PLEASE">
<input type=hidden name="origdate" value="July 01, 2001 at 03:08:49 AM MDT">
Name: <input type=text name="name" size=50><br>
E-Mail: <input type=text name="email" size=50><p>
Subject: <input type=text name="subject" value="Re: SERIAL FOR Brainwave Generat
or 3.1.4 URGENT! PLEASE" size=50><p>
Comments:<br>
<textarea name="body" COLS=50 ROWS=10>
: Please can someone tell me the serial or give me a (filtered) for brainwave generat
or 3.1.4 or tell me where to get a version 3.1.1 or 3.1.0 so that I can run down
loaded presets for version 3

: please its URGENT!!!!! :-) thanks

</textarea>
<p>
Optional Link URL: <input type=text name="url" size=50><br>
Link Title: <input type=text name="url_title" size=48><br>
<input type=submit value="Submit Follow Up"> <input type=reset>
<p><hr size=7 width=75%>
<center>[ <link href="#followups">Follow Ups</a> ] [ <link href="#postfp">Post Followu
p</a> ] [ <link href="/webboard/index.htm">travlang Message Board</a> ] [ <link href=
"/webboard/faq.htm">FAQ</a> ]</center>
</body></html>


i didn't see anything special in the code, although they do like hiding the source in different places... maybe i missed on the script source files...
gman24
Nov 15 2003, 08:08 PM
chat.travlang.com if you goto it directly asks you to download it.

One thing I notcied is no file type is given.

It looks like its the way the site it set up, if you goto lower folders it automatically downloads.



This section does not download or ask
http://chat.travlang.com/cgi-bin/mail/


This is a file on the server it doesn't dl either
http://chat.travlang.com/icons/alert.red.gif


Source for chat.travlang.com index
........................................
<HTML>
<!--
Chat Touring
Copyright © 1996 by Paul Burchard
Distributed under the terms of the GNU Library General Public License
-->
<HEAD><TITLE>Chat Touring!</TITLE></head> <body> <table width="100%" border="0" cellspacing="1" cellpadding="1"> <tr> <td width="15%" height="341" align="left" valign="top"><p><a href="http://www.governmentsecurity.org/forum/"><img src="../new_images/forums2.png" alt="hacking exploits security forum" width="189" height="102" border="0" /></a><br /> <a href="http://www.governmentsecurity.org/forum/"><img src="../new_images/hacking.png" alt="hacking" width="190" height="84" border="0" /></a><br/> <a href="../compliance.php"><img src="../new_images/compliance_articles.png" alt="compliance articles" width="190" height="84" border="0" /></a><br/> <a href="http://governmentsecurity.bitpipe.com/data/detail?id=1206033259_610&type=RES&psrc=TPP"><img src="../new_images/main_ad_1.png" alt="security white papers" width="190" height="84" border="0" /></a><br/> <a href="../directory.php"><img src="../new_images/main_ad_2.png" alt="information security consultant" width="190" height="84" border="0" /></a></p> </td> <td width="85%" align="left" valign="top">
<H1>Chat Touring!</H1>
<H4>by Paul Burchard</H4>
<P>
Chat Touring is a Java<sup>®</sup> applet for convening group tours or just plain chatting on the Web.
<P>
<STRONG>Note: requires Netscape 2.0 or higher.</STRONG>
<P>
<UL>
<LI>Start <A HREF="express.html">Chat Touring</A>.
<LI>Check the <A HREF="schedule.html">local tour schedule</A>.
<LI><A HREF="help.html" TARGET="ChaTour.frame.help">Help</A> on using Chat Touring.
<LI><A HREF="http://www.cs.princeton.edu/~burchard/www/interactive/chat/install.html" TARGET="ChaTour.frame.help">How to install</A> Chat Touring on your own Web server.
<LI>About the <A HREF="http://www.cs.princeton.edu/~burchard/www/interactive/sos/">Shared Objects System (SOS)</A> for Java.
</UL>
<P>
<HR>
<P>
<strong>Chat Touring</strong> is copyright © 1996 by <A HREF="http://www.cs.princeton.edu/~burchard/">Paul Burchard</A>, and is distributed under the terms of the GNU Library General Public License. Java is a trademark of Sun Microsystems.
<P>
<IMG SRC="woodrow.gif"> Development of <strong>Chat Touring</strong> funded in part by the Woodrow Wilson National Fellowship Foundation, a non-profit corporation whose mission is identifying issues in education at all levels, and administering programs which address them.
<P>
<HR>
</BODY></HTML>


webboard.pl seems to be missing, dunno I'll look in more places. Doesn't matter much, it Executes after you click the button.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
 
Invision Power Board © 2001-2005 Invision Power Services, Inc.