Good at cracking? Crack this file!

MyndFyre · March 06, 2006, 09:20 AM

Quote from: Fr0z3N on March 06, 2006, 06:52 AM
This is not my host, nor do I have any access to it, and if I changed anything about it, the CRC check would kick in.

You evidently don't know what a "hosts" file is.

If you're using Linux, open up /etc/hosts in your favorite text editor, or in Windows, %WINDIR%\System32\drivers\etc\hosts in your text editor of choice.

(This is a Windows hosts file)

Code Select


# Copyright (c) 1993-1999 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
#      102.54.94.97     rhino.acme.com          # source server
#       38.25.63.10     x.acme.com              # x client host

127.0.0.1       localhost

Let's say your script is at http://www.bmpk.us/bmtppk/memberlist/checkchar.php. All I do is add this entry into my hosts file:

Code Select


127.0.0.1      www.bmpk.us     # cracking Fr0z3N's lame CRC check

Now all I do is put a file on the path /bmtppk/memberlist/checkchar.php on my local web server that always returns YES.

How to do this is revealed by a trivial packet capture.

iago · March 06, 2006, 10:16 AM

Don't forget, you need to install either Apache or IIS first

MyndFyre · March 06, 2006, 10:22 AM

Quote from: iago on March 06, 2006, 10:16 AM
Don't forget, you need to install either Apache or IIS first

Quote from: MyndFyre[vL] on March 06, 2006, 09:20 AM
Now all I do is put a file on the path /bmtppk/memberlist/checkchar.php on my local web server

iago · March 06, 2006, 10:28 AM

Quote from: MyndFyre[vL] on March 06, 2006, 10:22 AM
Quote from: iago on March 06, 2006, 10:16 AM
Don't forget, you need to install either Apache or IIS first

Quote from: MyndFyre[vL] on March 06, 2006, 09:20 AM
Now all I do is put a file on the path /bmtppk/memberlist/checkchar.php on my local web server

Exacty! You're making the assumption that he has a local web server

Fr0z3N · March 06, 2006, 02:28 PM

I do, but yeah. Thanks for making me look like an idiot MyndFyre, seriously thanks, finally I can try and crack this thing lol it's driving me crazy

I'll go try that.

Thanks again MyndFyre, Ron and everyone else.

EDIT: Didn't work, please disregard that asm coding as it is 2 versions ago and is obsolete, if you could download the real dll and look through it that'd be great.

Could it have something to do with it using POST?

127.0.0.1 - - [06/Mar/2006:16:32:12 -0500] "POST /bmtppk/chyck.php HTTP/1.1" 200 61

iago · March 06, 2006, 06:48 PM

POST is just a way of submitting a form. If you have a page that always displays YES, then it shouldn't matter.

It's also possible the instead of "yes" it displays an authentication code of some kind. That would mean you'd have to dig more deeply.

Mystical · March 07, 2006, 04:51 PM

this may sound dumb, to me it kinda looks like it checks name checks page, then goes to another link to post yes or no, then check that page over, and then gets its results ....

.....

Mystical · March 07, 2006, 11:28 PM

Here's somthing instresting..

Hellmonkeyzz2 // MiscMuleA // USEast // 6pqm5n25

that's how its formatted into the file that you check from...

http://www.bmpk.us/bmtppk/memberlist/test.txt

then check this..

http://www.bmpk.us/bmtppk/memberlist/

Fr0z3N · March 08, 2006, 06:52 AM

Yeah all that has nothing to do with the current version. Also I think it might be logging into something, not sure.