HACKTHISSITE.ORG | Javascript Mission 5: Escape!

Unescape and escape are javascript functions used to encode and decode string just to make sure they are unreadable easily, but still its not that difficult to read them.

When you check out the source code you will find that there is an encoded string ‘%69%6C%6F%76%65%6D%6F%6F‘ and the variable moo has its decoded word i.e. our answer.

Continue reading “HACKTHISSITE.ORG | Javascript Mission 5: Escape!”

HACKTHISSITE.ORG | Javascript Mission 4: Var?

This mission is really simple. After checking out the source code you will come to know it.

RawrRawr = "moo";
function check(x)
    "+RawrRawr+" == "hack_this_site"
    if (x == ""+RawrRawr+"")
	alert("Rawr! win!");
        window.location = "../../../missions/javascript/4
    } else {
	alert("Rawr, nope, try again!");

In the first line, variable RawrRawr has the value ‘moo’. Then in the function there is a weird command "+RawrRawr+" == "hack_this_site", which is just to confuse you, so don’t worry. And you will also find that, like every other mission by now, this one also takes the value entered and passes it to function check and compares it with RawrRawr which still has the value ‘moo’.

Continue reading “HACKTHISSITE.ORG | Javascript Mission 4: Var?”

HACKTHISSITE.ORG | Javascript Mission 3: Math time!

Time for a math test. This time faith is aiming to test our math skills. Let’s see, what she has got for us.

var foo = 5 + 6 * 7
var bar = foo % 8
var moo = bar * 2
var rar = moo / 3
function check(x)
     if (x.length == moo)
           window.location += "?lvl_password="+x;
     } else {
           alert("fail D:");

After checking out the source code, you can see that the length of the word you will enter is passed to function check which is then compared to moo. So, we just find out moo.

Continue reading “HACKTHISSITE.ORG | Javascript Mission 3: Math time!”

HACKTHISSITE.ORG | Javascript Mission 2: Disable Javascript

In this level we need to disable the javascript to login and solve the mission. In the intro it is told that faith has setup a javascript redirection, that logs out the user to keep the hackers away.

faith had made a redirect script and logout with javascript to keep hackers away

In order to move further, disable javascript in your browser. Firefox users can disable it from Tools-> Options -> Content-> And uncheck the Enable javascript box.

Continue reading “HACKTHISSITE.ORG | Javascript Mission 2: Disable Javascript”

HACKTHISSITE.ORG | Javascript Mission 1: Idiot Test

Javascript with its wide scope in web development and intensive use is turning out to be a key to hack for the hackers because of its vulnerability. But here I will not discuss about javascript, what it is and how it works however here in these missions we will not be doing javascript injections, but will only analyze the code and workout.

The intro:

Continue reading “HACKTHISSITE.ORG | Javascript Mission 1: Idiot Test”