Follow us on Twitter!
Understanding is the answer, hatred is the problem, and hackers are the slaves abused and destroyed in the process of peace online - Deshouleres
Friday, April 18, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 15
Guests Online: 15
Members Online: 0

Registered Members: 82822
Newest Member: TheBunter
Latest Articles
View Thread

HellBound Hackers | Challenges | Other

Author

Would really appreciate some help


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-05-06 03:57
Hi, I'm a newbie. I'd really appreciate some tips on getting through this Javascript Login. This is totally ethical. I was suppose to get certain files for my class and it's a long story. Anyway here is the source. If anyone could give me any tips on this I'd really appreciate it.

<!-- ID: W2 -->




<!-- url /authentication/login.cfm?gotourl=/catalog/instres_resource_list.cfm&isbn=0-619-15959-6&login=nofrills&CFID=16643050&CFTOKEN=74879887 -->




<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>

<head>
<title>Course Technology -Login</title>

<link rel="stylesheet" type="text/css" href="/apps/styles/structure.css">
<link rel="stylesheet" type="text/css" href="/apps/styles/formatting.css">






<script language="JavaScript">
<!--

function SymError()
{
return true;
}

window.onerror = SymError;

var SymRealWinOpen = window.open;

function SymWinOpen(url, name, attributes)
{
return (new Object());
}

window.open = SymWinOpen;

//-->
</script>

<script name="Redirect" language="JavaScript1.2">
<!--
function exploreTo(form) {
var myindex=form.dest.selectedIndex
window.location.href= form.dest.options[myindex].value;

}
// -->
</script>

<style>
p, span, td {font-family: Arial, Helvetica, sans-serif; font-size: 10pt;}
h1.pagetitle {font-size: 20pt; font-weight: bold; font-family: arial, helvetica, helv, sans-serif; margin-top: 0px; margin-bottom: 0px;padding: 0px;}
a {font-family: Arial, Helvetica, sans-serif; font-size: 10pt; color: #039; text-decoration: none;}
a:hover{text-decoration: underline;}
a.visited {color: #669;}
</style>
</head>
<body marginheight="0" marginwidth="0" topmargin="0" leftmargin="0" onLoad="document.loginform.DAFLOGIN.focus();">
<br>
<h1 class="pagetitle">Login</h1>



<h3 class="subsectionhead">You have requested to complete a protected transaction.</h3>
<p class="after">Thomson Course Technology preserves the safety and integrity of our instructor files. Please enter your Course.com account information below.</p>




<form method="post" action="/login/index.cfm?CFID=16643050&CFTOKEN=74879887" name="loginform">
<table border="0" cellpadding="5" bgcolor="#efefef" cellspacing="0">
<tr><td valign="top"><span>Username:</span></td>
<td><input type="text" name="DAFLOGIN" value="" size="35" maxlength="50" tabindex="1"></td>
</tr>
<tr><td><span>Password:</span></td>
<td><input type="password" name="DAFPASS" value="" size="35" maxlength="64" tabindex="2"></td>
</tr>
<tr><td colspan="2" align="center"><span style="text-align:center;"><input type="SUBMIT" name="submit" value="Continue" tabindex="3"></span></td></tr>
</table>

<input type="hidden" name="action" value="LoginScript">
</form>

<a href="/login/index.cfm?action=pwreminder&CFID=16643050&CFTOKEN=74879887" target="_blank">Forgot your password?</a><br><br>
<h2 class="sectionhead">Contact us for a Course.com Account</h2>
<p style="color:#F00;">A Course.com Account will be setup only upon verification that you are an instructor.</p>
<ul>
<li><em>Colleges, Universities, Continuing Ed Depts, Vocational Schools:</em><br/ >Call Thomson Course Technology at 800-648-7450. </li>
<li><em>Private Career Colleges, State and Government Agencies, Healthcare Organizations, and Correctional Facilities:</em><br />Call Thomson Learning at 800-477-3692</li>

<li>K-12 Schools Customers call: 800-824-5179, select option 1</li>
<li><a href="/login/index.cfm?action=ContactIntl&CFID=16643050&CFTOKEN=74879887" target="_blank">International Customers</a></li>
</ul>
<br>


</body>



</html>


<script language="JavaScript">
<!--
var SymRealOnLoad;
var SymRealOnUnload;

function SymOnUnload()
{
window.open = SymWinOpen;
if(SymRealOnUnload != null)
SymRealOnUnload();
}

function SymOnLoad()
{
if(SymRealOnLoad != null)
SymRealOnLoad();
window.open = SymRealWinOpen;
SymRealOnUnload = window.onunload;
window.onunload = SymOnUnload;
}

SymRealOnLoad = window.onload;
window.onload = SymOnLoad;

//-->
</script>

Author

RE: Would really appreciate some help


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-05-06 04:29
Go get a gun (buy one if you don't have 1) get some bullets for that gun, shoot yourself in the head....


Author

RE: Would really appreciate some help

bl4ckc4t
Member

Your avatar

Posts: 591
Location: /etc/
Joined: 07.03.06
Rank:
Wiseman
Posted on 16-05-06 06:59
pyrodude0303 wrote:
Go get a gun (buy one if you don't have 1) get some bullets for that gun, shoot yourself in the head....


Thats a lil harsh.

But, I kinda agree, that login is pretty secure, You would , in my opinion, have to hack the FTP.

My 2 cents

Bl4ckC4t


Author

RE: Would really appreciate some help

Mr_Cheese




Posts: 2468
Location: Brighton, UK
Joined: 30.11.04
Rank:
Uber Elite
Posted on 16-05-06 14:23
not to mention its not even a javascript login <_<


http://www.hellboundhackers.org/
Author

RE: Thanks anyway


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 16-05-06 18:30
I appreciate it that you guys looked at the source. At least I know not to waste my time trying to hack it. Thanks anyway.