Reelix's Website

The place to be!

Home

Hacking - Challenges and tools

Well... What can I say? Hacking challenges are fun to do :D

This is a list of tools and sites I've built up over time...

Enjoy :)



Challenge Sites

These are sites with various challenges, designed to test various hacking aspects.

These sites include Application Decompiling, Steganography, Encryption, Web Hacking, Realistic Challenges... Etc etc etc :P

I'm registered under the name Reelix on all 3.


- http://www.hellboundhackers.org/

- http://www.hackits.de/

- http://www.enigmagroup.org/

- http://www.hackthissite.org/ or .com...

Was the most informative Web Hacking site... Now it gives me some weird SQL Error whenever I try to log in :(



Decompilers

- Flash -> Sothink SWF Decompiler (Version 3.3)

http://rapidshare.com/files/47917580/SSD3360720S.Lemon (RAR Password: www.lemonshare.net)

Comment: Out of the 4 Flash Decompilers I've tested, this is the best... By far!!!


- Java -> JAD (Version 1.5.8g)

http://www.kpdus.com/jad.html

Comment: The 2nd Java Decompiler i've tried... And i'm never going to change! Its brilliant!!!
     Has some problems with class files that link to each other... Otherwise, it rules :D


Visual Basic 6 -> VBReformer (Version 3.9 Free)

http://www.decompiler-vb.net/vbreformer_free.aspx

Comment: Rather easy to use, but very buggy! Works well though :)
     Requires a free registration... I've never recieved e-mails from them though.

- General -> EditPad Lite (Version 6.22)

http://www.editpadpro.com/editpadlite.html

Comment: A cool text editor :D Displays Line Breaks, and, with skill, you can edit some source code and variables :P
         Little bit buggy though... Sometimes refuses to close -_-



Crackers

- WinZIP -> PicoZip Recovery Tool (Version 1.02)

http://www.picozip.com/

Comment: It uses a dictionary file to crack password protected WinZIP Files. Very fast, very effective :)



Encryption

- Base 64

http://makcoder.sourceforge.net/demo/base64.php

- Binary To ASCII

http://www.roubaixinteractive.com/PlayGround/Binary_Conversion/Binary_To_Text.asp

- Caesar Cipher

http://www.roubaixinteractive.com/PlayGround/Binary_Conversion/Binary_To_Text.asp

- MD5 or SHA1 (Sometimes gets buggy :( )

http://md5.rednoize.com/

- Morse Code

http://www.onlineconversion.com/morse_code.htm

- ROT 13

Find the site yourself... I coded me a program to do it :P Will upload it when it becomes better :) Buggy atm...

It's another widely used encryption though ;)

- UUEncode

On an older, less featured newsreader, you may see something like this:

        begin 644 filename.r10
        M4F%R(1H\'`*6\.TD`#0````````"AZG2#@#4`V.%-`/8=?04"VD4%`%(.5R@4
        M-14`(````$QO9%]S.R!787(@;V%V(#`Q+F%S9EDF==)\'"DO$1\'Y+\A.\3X)
        M5_AR06`T8P.$*?D_Z-.^5]TBHM0Y3I[/*P..M$R1J)2\%RVYKAU?;A7ULJ%I_

This is known as a uuencoded format. The "begin 644 filename" line and the fact that every single line starts with "M" is a good way to recognize uuencode.



Simply take the file, (Bob.txt, or whatever) rename the extension to .uue (Bob.uue), and open with latest version of WinRAR.



Steganography

- Hiding files inside other files -> Camouflage (Version 1.2.1)

http://camouflage.unfiction.com/

Comment: Man... This program is fun to use :D

Also try EditPad Lite.... Sometimes works :P



Spoofing

http://tamperdata.mozdev.org/installation.html

Comment: A Firefox Plug in - Easily Spoof's Reefer, and Modify's Cookies. Can modify User-Agent with abit of difficulty...



Exploits

- SQL Injection

->     ' or 1=1--

Used to bypass the password in the "Please enter your user name/password" boxes... Very fun :)

Usage:

Username: Administrator
Password: ' or 1=1--


- Server Side Includes (SSI)

->     <!--#exec cmd="ls -l"-->

Used to display all the files in the directory...

Usage:

Forgot where I used it though -_-


Well, thats all for now...

As I go along, so the list will be updated.

Enjoy for now :)

© 2006 All Rights NOT Reserved.

Create a free website at Webs.com