Follow us on Twitter!
Understanding is the answer, hatred is the problem, and hackers are the slaves abused and destroyed in the process of peace online - Deshouleres
Saturday, April 19, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 26
Guests Online: 24
Members Online: 2

Registered Members: 82841
Newest Member: and3rv1sh
Latest Articles
View Thread

HellBound Hackers | Challenges | Basic

Author

basic 9


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 15-02-07 03:46
Lads,I have been searching around for info on how to pass this mission,so far I have %00,then I read in other post to go with something totally different,now I appreciate everyones input but can someone point me in the right direction
Author

RE: basic 9


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 15-02-07 04:02
i dont remember this mission to well but i think it was simple put %00 on the end of something in the box and submit.


Author

RE: basic 9


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 15-02-07 06:34
that's called a null byte attack.

\0 or %00 are appended to the end of a file, in order to try to make the server display the source code of the non-parsed, in this case, PHP code.




Author

RE: Basic9


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 15-02-07 12:52
This one is tricky


Author

RE: basic 9


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-02-07 03:09
i think this is down

cus i asked a guy who already did it and showed him what i was injecting and he said that it was right so he thinks its down as well

EDIT

nvm




Edited by on 16-02-07 04:47
Author

RE: basic 9


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-02-07 04:45
I dunno about it been down,as i pass the mission,and I would like to thank those who helped me,when you get the username,be precise with the punctuation,

peace
Author

RE: Possible spoiler


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 11-06-07 10:54
I need help too, im lost =/

So i fugured i have to use a poison null byte attack but i dont know how. Ive been looking all over google and so far i understand that i have to enter something into one of the boxes ( I know witch one) and end it with /0.

Problem is, i dont know what to type in. :S Ive been looking in the source and all i found was this
"($_GET[sql_query] == "SELECT * FROM family_db"Wink" Is this relevant? I mean the family_db part.

Ps: may the answer be here somwhere; http://insecure.org/news/P55-07.txt -

Thanks for all the help!


Author

RE: basic 9

mido
Member

Your avatar

Posts: 613
Location: Cairo, Egypt
Joined: 27.01.07
Rank:
Monster
Posted on 11-06-07 11:06
i think there is some different files...
mido_eg3[at]hotmail.com
Author

RE: basic 9


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 11-06-07 11:17
what do you mean! Explain!


Author

RE: basic 9

Ayr4
Member

Your avatar

Posts: 234
Location: Norway
Joined: 28.09.05
Rank:
Moderate
Posted on 11-06-07 11:24
If anyone needs help, PM me...:ninja:


anbu.sf@hotmail.com
Author

RE: basic 9

mido
Member

Your avatar

Posts: 613
Location: Cairo, Egypt
Joined: 27.01.07
Rank:
Monster
Posted on 11-06-07 11:29
notice the URL carefully...Wink
mido_eg3[at]hotmail.com
Author

RE: basic 9


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 11-06-07 11:35
on witch page! ?


Author

RE: basic 9

richohealey
Member



Posts: 1022
Location: #!/usr/local/bin/python
Joined: 01.05.06
Rank:
Monster
Posted on 11-06-07 12:01
WTF? why are there 2 active threads on this???


COLLABORATE!


bitchohealey at hotmail dot com skype:richohealey www.psych0tik.net
Author

RE: basic 9


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 13-07-07 16:06
im sooo confused. ive gotten in and i have the right pass and user name but it wont work!!! if anyone has already completed this pm me, and ill tell u the pass and name, and if its right ill know its down. PLZ PLZ PLZ. anyone?::angry:
Author

RE: basic 9

flame_1221
Member



Posts: 179
Location: malaysia
Joined: 13.05.07
Rank:
God
Posted on 09-08-07 09:16
I had got the null byte part, then there is a message saying:
Good Job
You doing good!
Continue to 2nd part
When i click the link, what i got is a blank page..
Is this challenge down?
127.0.0.1
Author

RE: basic 9


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 09-08-07 12:18
yeh its down, i was going through a load of challenges cheking them and reported them .


Author

RE: basic 9


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 09-08-07 12:21
yea, it seems like it, just try it again later