Axino.net

Basic Web Hacking 17 :: java decompiler

by Arxleol on Tuesday 26.01.2010, under Java, hellboundhackers.org, tutorial

As you know java uses interpreter for executing on target system. Why am I talking about java now.

Because,  java also allows applets web applications executed in web browser.  Now let’s continue to our mission.

Enter Your Password to Login

only.Samurai made this login thinking it wasn’t vulnerable to any injection, he was right, however; there was another hole.

From introduction we see that this mission is not vulnerable to anything used in previous examples.

However, if we inspect code you will find something similar to this:

< applet width="150" height="40" code="basic17.class">
</applet>

Here we have link to source: basic17.class you can download this file from: http://www.hellboundhackers.org/challenges/basic17/basic17.class

Now since we have compiled java class try downloading java decompiler. Next step is to open basic17.class with decompiler and obtain java code.

import java.applet.Applet;
import java.applet.AppletContext;
import java.awt.Color;
import java.awt.TextField;
import java.awt.event.ActionEvent;
import java.awt.event.ActionListener;
import java.net.MalformedURLException;
import java.net.URL;
 
public class basic17 extends Applet
  implements ActionListener
{
  String file4 = "baysick-seventeen.complete.php?pass=";
  TextField inputLine = new TextField(15);
  String file2 = "test";
 
  public void init() {
    setBackground(Color.WHITE);
  }
 
  public basic17() {
    add(this.inputLine);
    this.inputLine.addActionListener(this);
    this.file2 = "challenges";
  }
 
  public void actionPerformed(ActionEvent paramActionEvent) {
    String str1 = this.inputLine.getText();
    if (str1.equals("ifYOU'REhereYOU'REelite"))
    {
      URL localURL = null;
      String str2 = "http://www.hellboundhackers.org/";
 
      String str3 = "basic17";
      try {
        localURL = new URL(getDocumentBase(), str2 + "/" + this.file2 + "/" + str3 + "/" + this.file4 + new String("elite")); } catch (MalformedURLException localMalformedURLException) {
      }
      getAppletContext().showDocument(localURL);
    }
    else
    {
      this.inputLine.setText("not yet");
    }
  }
}

After inspecting this code for some time you will notice following line:

    if (str1.equals("ifYOU'REhereYOU'REelite"))

This in fact means that password we need is:

“ifYOU’REhereYOU’REelite

Similar Posts:

:, , , ,
4 comments for this entry:
  1. M. Kadin
    Tuesday 26.01.2010 on 22:33

    Can you tell me / help me crack a site ? :) Mail me please for more info.
    I wanna learn from you. :D

    Thanks,
    M.K.

  2. Arxleol
    Wednesday 27.01.2010 on 03:13

    Hello, unfortunately I cannot help you cracking websites. These things are only for learning purposes. hellboundhackers.org and hackthissite.org are not teaching you how to crack sites but teach you how to protect your future applications from hackers.

    Also consider applying to mentoring program on hellboundhackers.org

    On the other hand you may always drop me an email.

    Regards,
    Ax

  3. Nas
    Monday 08.03.2010 on 20:05

    Here is the new version of DJ Java Decompiler:

  4. Nas
    Monday 08.03.2010 on 20:06

    Here is the new version of DJ Java Decompiler:
    DJ Java Decompiler

Leave a Reply

Looking for something?

Use the form below to search the site:

Still not finding what you're looking for? Drop a comment on a post or contact us so we can take care of it!

Visit other sites:

Archives