What is it? @.@

Here is the place where I record some tactics about wargame, systems, and other security issues.


Bright Shadows - Programming 1: "Just to get started"


When you click on this link, you will get a text. Then just send the letters back to:
This page will tell you the solution; the time limit is one second.
_______________   _________
|enter solution | | Check it!|
 ̄ ̄ ̄ ̄ ̄ ̄ ̄ ̄    ̄ ̄ ̄ ̄ ̄
  1. Each time when you visit the link, it will display a random text on the page like below.
    The "text" is: 'klvmjrzgg'
  2. I use Ajax to conquer this challenge. Below is my code for example.
    (a) Visit the page link

    Visit: hxxp://www.bright-shadows.net/challenges/programming/get_started/index.php

    (b) Open JavaScript Console of Chrome Developer Tools and include the jQuery library

    var jqlib = document.createElement('script');
    jqlib.src = "http://code.jquery.com/jquery-latest.min.js";

    (c) fetch data and send it to the target URL

    url: 'http://www.bright-shadows.net/challenges/programming/get_started/tryout.php',
    type: 'get',
    dataType: 'text',
    var letters=data.substring(16, data.length - 1);
    var newUrl="solution.php?solution="+letters;
  3. It will show us 'The keyword is "mainboard"'. Well done!

No comments:

Post a Comment