Test your hacking skills at Try2Hack.nl. Clever stuff. Educational even. I'm currently stuck on level 5 (.exe-based login, hmm). [via Weblog Wannabe]
Interaction design • webdevelopment • web art • photography
Test your hacking skills at Try2Hack.nl. Clever stuff. Educational even. I'm currently stuck on level 5 (.exe-based login, hmm). [via Weblog Wannabe]
(level 4 was easy with NS6 + sun java2)
Level 6 (NOT !)
Did you really think it would be this easy ? Go back and try again !
but now im stuck at 6.. bah.
btw i think there are 15 levels.
please someone help me with level 6
All this +48, perhaps it is +48 ascii value? (me tries)
Well it was easy - just the same as the java one. Rather than hex edit it though - you must decompile it, and work out some mide values.
I guess you could guess that from the hex code.
I won't spoil it for anyone further though :D
plz help!
use a VB3 decompiler
altho. rules do not permit me to tell u where
it doesnt stop me saying how!
get ya vB3 decompiler, run it on the exe, look at the BAS, FRM, and relevent files...
Or boot it into VB3 and change the values
No...
can somone just NAME a VB3 decompiler?
Here's the BAS file that you need for level 5. The answer's in there, but you'll probably have to sit down with some pen and paper! :) That's all I can give you, and I'm doing it only because finding a VB3 decompiler is hell anymore.
http://www.erie.net/~nuangel/Level5.bas
thankz u
How???
or
where abouts do i gat VB3?
I'm a lamed... damn, oh well :D
http://www.try2hack.nl/l-e-v-e-l-6.html
you gotta decompile the exe i dunno how i just got sum 1 to tell me :P
download http://www.try2hack.nl/JavaScript and open it with notepad.
I'm stuck on lvl 7, any ideas?
WHERE'S THE FUN IN THAT ???
Also saying that you need a packet sniffer for level 6 takes away a whole lot of research from a 'hacker' to break it. It's not level 6 for nothing... it's harder and you need to find out how to break it.
This posting of spoilers and solutions is lame. If you really want to help, just point people a little in the good direction, don't spell it out for them.
Sorry for the sortof long post, but I can't help it. Things like this piss me off.
i'm up 2 level 5...does any1 know where 2 get a vb3 decompiler?
IT JUST POPS UP A SCREEN WITH SETTINGS LIKE QUALITY, "About Macromedia 5", etc.
What should i do?
ftp://ftp.one.net/pub/users/dreitz/decompiler/vbdis22e.zip
thanx
but now the link is not working for the .swf file
what shall i do?
and yes, lvl6 needs a sniffer
try using a search engine. they are under-rated, and under-used! (search engines that is)
catch up with the rest, get the cheats!
:)
http://www.erie.net/~nuangel/Level5.bas
I won't tell you what you need to do with it though. That's up to you.
And those who don't know what an "SWF" file is, please don't even pretend to call yourself a hacker. Hackers aren't crackers, Hackers are those who can push a system to it's limits, who know what their machine is capable of, who knows the ins-and-outs. Not just people who can open "ShockWaveFlash" (SWF, duh) files in a notepad. ;)
Anyone knows what's happen??
Thanks...
Let's just say it's not that simple. I told you I was giving you the .BAS - NOT telling you what to do with it. Let's just say the answer is not right in front of you. You have to put your VB skills to work.
i did these before but now they changed the levels. whats a good packet sniffer to use? =p lol i remember i have to decode using shakespeare's abba babba crap.
If you said that because of my post..., i say that i found the real user and pass playing with the Mid of course, just the link that the program give when i enter the "correct" user and pass doesn't work.
i cant tell you exactly how to do level 6, but i can tell you that you send to the server, it sends back to check validation and so forth, so you need a packet sniffer, this will give you an encrypted line of text including the correct username and password, you need to decrypt that, put the line of encrypted writing into google with " and " on wither side of it, and search for this, this'll give it to you easy, another hint, the encryption is a very famous type of encryption, very commonly used.
this is just a test
to see if line breaks are converted
any ideas?
You already have flashlevel2.swf on your computer
I'm not familiar with java, so should I read about it?
Lev 1 - Duh
Lev 2 - Well D/L SWF and Notepad it
Lev 3 - Learn a little Javascript and notice the src="Javascript"
Lev 4 - Decompile it and now learn vb (Mid(string,start,length)) =)
Lev 5 - It helps if you have linux otherwise use a sniffer in windoze and then decrypt some simple encryption.
Lev 6 - Well im not gonna spoil anymore, i gave you all enough
- V354
Pw: EasyApplets
http://www.try2hack.nl/JavaScript
.. that's the right link ;D
http://www.try2hack.nl/levels/JavaScript
i poot my norm passward (gimp) but i went to disneylarnd?
but i want there last yar?
i dnt undarstannd ffs!11!1
but i'll give you hitns but i'll be very vague but in any case you wont learn shit from these challenges anyway (besides how to look for stuff in other places)
1.Use you brain and guess otherwise goto lameindustries.org and take the html tut.
2.it's real easy its already on your comp. (you c when on the internet your "windows" saves every site you visit) unless otherwise stated look for it and try regedit (love when begginers mess up their windows ;)
3.View source if you have explorer
4.ditto i think
5.got caught on this because i don't now wtf they were tryin to throw vb3 proggies in for. havn't ever used it so anyways find out!
6.sniff'em also use wdsm32 and try that but whatever.
7.if you got past six then chances are you don't need my help cause your prolly wanting to figure out yourself now!....have fun and remember it's supposed to be challenging...
but it's down ! :-(
anyone knows when it'will be up ?
the Level5.bas file has moved (the erie.net file is STILL there, but I do not know when they will erase it). If you still can't decompile it on your own, and you need the .BAS file, it can be downloaded here:
http://www.velocity.net/~culver_c/Level5.bas
Again, though, I'm only providing that to you because decompiling the program can be difficult... but I'm NOT going to tell you what to do with that file. Good luck!
www.google.com -- best search engine on the web
and no, dont ask for the username and pass, think about looking at the source of the flash file... it IS on your comp;)
Note to people some of the above info is old
LEVEL 6
Level 6 and up are currently out of service, try again later!
level 1 - too easy (use your brain)
level 2 - ditto
level 3 - just download the source (not in browser)
level 4 - search for "Java Decompiler"
download the .class file (like #3)
level 5 - search for "VB3 Decompiler" in google (one of the first five results should have it)
level 6 - says its out of service? (maybe have to do something weird, but i'm have to work now)
p.s. - to learn how to find exactly what you want on the web check out http://searchlores.org/
addendum
level 2 - search for "flash decompiler"
either look in temporary internet files for level2[1].swf or download level2.swf like in #3
to download any actual file use something like wget or iczelions http downloader
btw - http://searchlores.org/ is an awesome site for anyone who really wants to learn
vgazha@mail.ru
PLEASE !!!!
Name+Password... how can I get it?
I got the Code from the Decompiler "Cavaj 1.11" but I didn't find any Hints for the passwort. It looks like they were include by annother Data, but I couldnt get through it. Maybe it is because I don't understand much of Java, but maybe my Code is wrong.
http://www.anime2k.de/test/PasswdLevel4(real).class
That is the File, that I decompiled, but I really don't find something. Only a Code for the Username and Password, but it does not make much sense for me. Maybe you can complain it to me, how I can fix it, or you can send me your decompiled Version.
Email: final-trunks@anime2k.de
If ya want to give advices for what is a hacker or a cracker or a lamer.. go to another place!
Just because, if you find this thread its only the reason that you (like me) wanted a hint for solve some kind of problem heheheheh
Now the hard thing
I´m really sad that level6 is out of service :( and that was because i find this thread...
respect!
P.S. Questions on level 1 and 2 are really noob questions and if you were stucked in this level don´t go any further and learn before (at least how to see source code in I.E.) make any question...
for those who need a vb3 decomp...
Level 2:Login=try2hack
Pass=irtehh4x0r!
Level 3:I am having the same trouble as JPEG.
<script language="JavaScript">
<!--
pwd = prompt("Please enter the password for level 3:","");
if (pwd==PASSWORD){
alert("Allright!\nEntering Level 4 ...");
location.href = CORRECTSITE;
}
else {
alert("WRONG!\nBack to disneyland !!!");
location.href = WRONGSITE;
}
PASSWORD="AbCdE";
CORRECTSITE="level4-sfvfxc.xhtml";
WRONGSITE=
//-->
</script>
so..how to continue??
Put this into your Address bar.. And it will reveal the code for the first javascript code... I.E. Showing the pass.. http://www.try2hack.nl/levels/JavaScript
Voila..
1 0wnZ j00 4ll!
2 hours and i got to level 6!
hehehehehehehehehehehehe
http://www.nietnormaal.nl/downloads/djdec355.zip (1.7 mb)
or
http://members.fortunecity.com/neshkov/dj.html
http://www.nietnormaal.nl/downloads/vbdecomp.zip
Username: Try2Hack
Password: OutOfInspiration
both of those didn't work?? like what the fuk, can someone help me??
go to http://www.try2hack.nl/JavaScript
and it will give you the username and password
http://www.nietnormaal.nl/downloads/vbdecomp.zip
i think im addicted...
~.:*SnEaK*:.~
Are you a programmer or what.
First learn some programming.
I'm in level 6 and that's hard .
And that sniffer is not working
<script src="JavaScript"></script>
Come on, people. This isn't hard, and you shouldn't be asking for help, at least not for 1-4. btw levels 1-4 can be solved with nothing more than your favorite web browser. Also, if you can't get past level 4 at least, please do NOT refer to yourself as a hacker.
Level 4 - i can understand if u need a bit of help.
Level 5 - im stuck, but it wont take much longer.
http://www.try2hack.nl/levels/level2.swf
cos i cant be bothered writing a html page just 4 that.
for level 5 theres a decompiled version being given away lmao !!!
(you will need to kno virusl basic ;))
so for level6 *snores* i hope this gets harder email me with ne questions guys / girls
Oph
not a hacker an advanced computer user
It's very fucken... What to do?
...MSIE v7.66...it's a very bad joke...
Any ideas???
import java.applet.Applet;
import java.applet.AppletContext;
import java.awt.*;
import java.awt.event.ActionEvent;
import java.awt.event.ActionListener;
import java.io.*;
import java.net.MalformedURLException;
import java.net.URL;
import java.util.EventObject;
public class PasswdLevel4 extends Applet
implements ActionListener
{
private URL finalurl;
String infile;
String inuser[];
int totno;
InputStream countConn;
BufferedReader countData;
URL inURL;
TextField txtlogin;
Label label1;
Label label2;
Label label3;
TextField txtpass;
Label lblstatus;
Button ButOk;
Button ButReset;
Label lbltitle;
public PasswdLevel4()
{
inuser = new String[22];
totno = 0;
countConn = null;
countData = null;
inURL = null;
txtlogin = new TextField();
label1 = new Label();
label2 = new Label();
label3 = new Label();
txtpass = new TextField();
lblstatus = new Label();
ButOk = new Button();
ButReset = new Button();
lbltitle = new Label();
}
void ButOk_ActionPerformed(ActionEvent actionevent)
{
boolean flag = false;
for(int i = 1; i <= totno / 2; i++)
{
if(txtlogin.getText().trim().toUpperCase().intern() == inuser[2 * (i - 1) + 2].trim().toUpperCase().intern() && txtpass.getText().trim().toUpperCase().intern() == inuser[2 * (i - 1) + 3].trim().toUpperCase().intern())
{
lblstatus.setText("Login Success, Loading..");
flag = true;
String s = inuser[1].trim().intern();
String s1 = getParameter("targetframe");
if(s1 == null)
{
s1 = "_self";
}
try
{
finalurl = new URL(getCodeBase(), s);
}
catch(MalformedURLException _ex)
{
lblstatus.setText("Bad URL");
}
getAppletContext().showDocument(finalurl, s1);
}
}
if(!flag)
{
lblstatus.setText("Invaild Login or Password");
}
}
void ButReset_ActionPerformed(ActionEvent actionevent)
{
txtlogin.setText("");
txtpass.setText("");
}
public void actionPerformed(ActionEvent actionevent)
{
Object obj = actionevent.getSource();
if(obj == ButOk)
{
ButOk_ActionPerformed(actionevent);
return;
}
if(obj == ButReset)
{
ButReset_ActionPerformed(actionevent);
}
}
public void destroy()
{
ButOk.setEnabled(false);
ButReset.setEnabled(false);
txtlogin.setVisible(false);
txtpass.setVisible(false);
}
public void inFile()
{
new StringBuffer();
try
{
countConn = inURL.openStream();
countData = new BufferedReader(new InputStreamReader(countConn));
String s;
while((s = countData.readLine()) != null)
{
if(totno < 21)
{
totno = totno + 1;
inuser[totno] = s;
s = "";
} else
{
lblstatus.setText("Cannot Exceed 10 users, Applet fail start!");
destroy();
}
}
}
catch(IOException ioexception)
{
getAppletContext().showStatus("IO Error:" + ioexception.getMessage());
}
try
{
countConn.close();
countData.close();
return;
}
catch(IOException ioexception1)
{
getAppletContext().showStatus("IO Error:" + ioexception1.getMessage());
}
}
public void init()
{
setLayout(null);
setSize(361, 191);
add(txtlogin);
txtlogin.setBounds(156, 72, 132, 24);
label1.setText("Please Enter Login Name & Password");
label1.setAlignment(1);
add(label1);
label1.setFont(new Font("Dialog", 1, 12));
label1.setBounds(41, 36, 280, 24);
label2.setText("Login");
add(label2);
label2.setFont(new Font("Dialog", 1, 12));
label2.setBounds(75, 72, 36, 24);
label3.setText("Password");
add(label3);
add(txtpass);
txtpass.setEchoChar('*');
txtpass.setBounds(156, 108, 132, 24);
lblstatus.setAlignment(1);
label3.setFont(new Font("Dialog", 1, 12));
label3.setBounds(75, 108, 57, 21);
add(lblstatus);
lblstatus.setFont(new Font("Dialog", 1, 12));
lblstatus.setBounds(14, 132, 344, 24);
ButOk.setLabel("OK");
add(ButOk);
ButOk.setFont(new Font("Dialog", 1, 12));
ButOk.setBounds(105, 156, 59, 23);
ButReset.setLabel("Reset");
add(ButReset);
ButReset.setFont(new Font("Dialog", 1, 12));
ButReset.setBounds(204, 156, 59, 23);
lbltitle.setAlignment(1);
add(lbltitle);
lbltitle.setFont(new Font("Dialog", 1, 12));
lbltitle.setBounds(12, 14, 336, 24);
String s = getParameter("title");
lbltitle.setText(s);
ButOk.addActionListener(this);
ButReset.addActionListener(this);
infile = new String("level4");
try
{
inURL = new URL(getCodeBase(), infile);
}
catch(MalformedURLException _ex)
{
getAppletContext().showStatus("Bad Counter URL:" + inURL);
}
inFile();
}
}
please help
try
{
inURL = new URL(getCodeBase(), infile);
}
catch(MalformedURLException _ex)
{
getAppletContext().showStatus("Bad Counter URL:" + inURL);
}
inFile();
}
}
Look at... ;-)
See if you find the same thing I ddid
So far ive heard ppl talk about lvl 9
Anyone?
help wanted!!
and now i'm REALLY stuck
can anybody help me?
-(vb,java,php,html,c/c++ plus opengl, i even programm my own operating system)
i have EVERYTHING but a decomp for vb SIX!
Use Telnet from your star -> Run
Telnet 62.192.127.200 80
Telnet is loading and now is time to
make a spoofing.
What is spoofing?
I have finished 1 to 6 levels so far.
In this level my goal is to lie the server and do server believes I have
Internet explorer 7.66 but Microsoft so far have only internet explorer 6 :)
and some people say this
After connect with telnet type these
GET /cgi-bin/level7.pl HTTP/1.1
and press enter
Other people says this
GET /levels/level7-xfkohc.php HTTP/1.0
and press enter
Is not the same which of them is correct?
nothing happend so far
If you try to press again the ENTER
you will desconnect and you will take
a raw like HTML source code from ERROR 404 PAGE.
if you don't press nothing , nothing will happend and telnet waiting for next line.
in the second line people says
type this:
User-Agent: BLAH (compatible;MSIE 7.66;UNIX)
and press ENTER button again
Other people says this
User-Agent: (MSIE 6.72; Linux)
in the first ,the IE is 7.66 version
in the secont opinion , the IE is 6.72
which is the correct?
after this Press ENTER again.
Do not press enter second time without
write something , because agail will be
desconnected and you will recieve a RAW
text from an ERROR PAGE 404
without string from next level8.
and you are continue typing the third
line with commands.
type this
telnet is not familiar for me
some people types this command
and other people doesn't write it.
Host: www.try2hack.nl
and press Enter Again one time
because you will desconnected (blah blah Error 404)
And now the final command (Grrrrr)
Referer: http://www.microsoft.com/ms.htm
After typing this command nothing happends
And you are waiting and say
What now?
if i press enter again without command
I will eat an error ROW of html page 404
And I am waiting to eternity
After a long time of borring and nothing happend
I press ENTER
and I eat this ERROR 404 Row page :(
Figure 1:
GET /cgi-bin/level7.pl HTTP/1.1
Host: www.try2hack.nl
Referer: http://www.microsoft.com/ms.htm
User-Agent: (MSIE 6.72; Linux)
OR Figure 2: ???
telnet 62.192.127.200 80
GET /levels/level7-xfkohc.php HTTP/1.0
User-Agent: BLAH (compatible;MSIE 7.66;UNIX)
Host: www.try2hack.nl/
Referer: ttp://www.microsoft.com/ms.htm
after all , all people say press enter
and a page will appear and says
if this is correct you will see this
---------------------------------
When you do, you will get this information:
HTTP/1.1 200 OK
Date: Tue, 22 Oct 2002 05:05:09 GMT
Server: Apache
Cache-Control: max-age=604800
Expires: Tue, 29 Oct 2002 05:05:09 GMT
Transfer-Encoding: chunked
Content-Type: text/html
-------------------------------------
But I never saw this yet.
and correct page will appear
the goal of understanding hacking is not to read others solusion , but
understand how can solve the problem.
And if problem solved , why solved?
The url for next level is this:
But for my is nothing because I have
just bypass this level and I still
not understanding why , can I do this?
What is spoofing?
How works?
If someone wants the next level only
because you have stuck
take the URL , but this is not the solusion , only a copy from other person.
How can I make this correct and I pass
this level correct without put the allready URL taken by others?
http://www.try2hack.nl/levels/level8-sdgnrg.xhtml
If fact I didn't solve the level7
Only I took the URL
and if someone is in level1 an place this URL , automatically passes 7 levels and no problem :)
Please could any one tell my how can
I pass this level correct.
Other people says , telnet isn't the correct programm for this level
the CRT is the correct one.
Please if someone knows the solusion for level7 (The working Solusion)
because all of them which a say does not working (send me e-mail at takis76@yahoo.com)
Thank you very much
After this
type another line
62.192.127.200 80
GET /levels/level7-xfkohc.php HTTP/1.0
User-Agent: MSIE 7.66; UNIX
Host: www.try2hack.nl/
Referer: http://www.microsoft.com/ms.htm
*HINT* SNIFFER *HINT*
how damnit how can i so stypid?
not that i understand to be honest.
anyone fancy explaining as they would to a 2 year old?
the new LEVEL TWO CAN SOMEONE HELP ME
For level 3 do the same, but then look for a javascript file and open it in notepad.
with both you should find username(or something similar)(NOT WITH LEVEL 3)= and password=
put that in
Mainteant, personnes ne sait comment m'aider pour le level 7 ?
rstwap_sms@hotmail.com
level 1 is h4x0r
i've opened the class file but i have no idea where to get the password from
Also, should I use a sniffer on level 5?
i've tryed like everything. sigh.
thx in advance
<a href="http://www.open-directory-project.co.uk/">Open Directory Project</a>
<a href="http://www.open-directory-project.co.uk/">Open Directory Project</a>
i need some help in lvl4.
i have decompiled the .class.
now it is great, but i don't see any passwrds. in temporany internet files: nothing...
help me
where do i begin/??
BTW I *don't* want you to give me the password. I want the way of finding it!
Thanks
Thanks.
http://www.ethereal.com/
I'm really stuck on level 4.. i've decompiled the .class file, and checked temporary internet files a million times.. Can anyone please help me out?
i would be very happy for ANY info.
Thank You !