Jump to content


Photo
- - - - -

Hacking Experts Exchange


  • Please log in to reply
13 replies to this topic

#1 ntheory

ntheory

    data pillager

  • Agents of the Revolution
  • 1,757 posts

Posted 13 July 2007 - 05:30 PM

Today I needed some information about the Visual Studio .NET 2005 serial control. When I did a Google search it brought me to Experts Exchange and had an article that I thought would explain what I needed to do. However, for the first time, I couldn't read what EE had to say for two reasons:

1) The text was greyed out after the question
2) The text was definitely not in English

I decided to take a closer look to see if I could understand what was going on. I highlighted the text and pasted it into a text editor. You'll probably notice that if you try to do this they move the registration reminder over whatever box your mouse is inside of. You can avoid that by starting to highlight at the question and scrolling down to the bottom.

I quickly scrolled through the text and noticed an interesting string:

OnhqEngr 9600

I guessed that OnhqEngr == BaudRate and realized that the whole thing is a Caesar cypher. So, in a nutshell, if you're interested in learning about Caesar cyphers, or you just don't want to register or log in to Experts Exchange you can always write a quick app that converts the answers to regular text by figuring out the Caesar cypher offset. For this article it was 16, but for other articles it may be different.

Of course, you could always use BugMeNot... but then you wouldn't have the fun of writing a simple cypher application. :D

#2 Perf-149

Perf-149

    Hakker addict

  • Members
  • 502 posts
  • Location:Location is key!

Posted 13 July 2007 - 07:02 PM

Hah, that is priceless.

Hopefully they don't get smart and try some other sort of encryption. Excellent find man!

#3 Ohm

Ohm

    I could have written a book with all of these posts

  • Members
  • 3,209 posts
  • Gender:Male
  • Location:Maine, USA

Posted 13 July 2007 - 07:33 PM

You could even write a userscript to "fix" that.

It really pisses me off when sites do this. Why should I have to sign up to view content? To me this is completely counterproductive and a 180 from the entire philosophy of the web. Are they that desperate to sell your email address?

#4 operat0r

operat0r

    Dangerous free thinker

  • Members
  • 793 posts
  • Location:ops

Posted 13 July 2007 - 08:19 PM

its basic rot-13

* copy the text
* goto http://web.forret.com/tools/rot13.asp
* paste

be nice to have a experts exchange (proxy) if anybody can get me a php script for rot13 I would setup a experts exchange proxy :)

#5 Perf-149

Perf-149

    Hakker addict

  • Members
  • 502 posts
  • Location:Location is key!

Posted 13 July 2007 - 08:33 PM

Heh, funny thing is that they never use anything but a Ceaser Cypher with a shift of 13. It would be a bit harder if it was a variable shift because you would probably have to compare each shifted word with a dictionary list to see if the shift was correct. (but then you get into trouble when you get words like "dolls" which can shift to "wheel" etc.)

Not well enough versed in PHP to throw something up, but I am sure there is something you can find with google. It's a pretty simple program.

#6 n3xg3n

n3xg3n

    "I Hack, therefore, I am"

  • Members
  • 960 posts
  • Country:
  • Gender:Male
  • Location:(703)

Posted 13 July 2007 - 10:02 PM

The easiest way to find out is to look for one letter words ( "I" and "a" are really the only valid possibilities, "u" and "r" also) and go from there trying those shifts on other words, they would be smart (although CPU intensive) if they rot'd each word by a random number so this could not be applied

But if its always rot13, there are plenty of rot13 programs (FreeBSD even comes with one)

Edited by n3xg3n, 13 July 2007 - 10:03 PM.


#7 prick

prick

    SUP3R 31337

  • Members
  • 160 posts
  • Location:44

Posted 13 July 2007 - 10:11 PM

http://www.php.net/str_rot13

#8 systems_glitch

systems_glitch

    Dangerous free thinker

  • Moderating Team
  • 1,652 posts
  • Gender:Male

Posted 13 July 2007 - 10:18 PM

I've encountered Expert's Exchange before, in searching for answers to C++ questions in Windows. I noticed that the answers would show up as part of the Google search, in plaintext, while they were fogged when I navigated to them...figuring the Google-bot must've had access to the plaintext at one point, I clicked "Cached." It works:


Example

#9 operat0r

operat0r

    Dangerous free thinker

  • Members
  • 793 posts
  • Location:ops

Posted 13 July 2007 - 10:39 PM

HAH good find ! it would appear anything in "google search" it auto decrypted in googles cache ... now in "EE Search" I have not found any cached pages so you would still need to use the ROT-13 decrypt

google dork
http://www.google.com/search?hl=en&q=cache%3A[URL TO DECRYPT]

Edited by operat0r, 13 July 2007 - 10:47 PM.


#10 operat0r

operat0r

    Dangerous free thinker

  • Members
  • 793 posts
  • Location:ops

Posted 13 July 2007 - 11:51 PM

I would have setup a proxy but sombody beat me a script for greasemonkey plugin for firefox ..


* install https://addons.mozil...070607.0-fx.xpi
* restart firefox
* install http://userscripts.o...ce/8614.user.js

Edited by operat0r, 14 July 2007 - 12:14 AM.


#11 n3xg3n

n3xg3n

    "I Hack, therefore, I am"

  • Members
  • 960 posts
  • Country:
  • Gender:Male
  • Location:(703)

Posted 14 July 2007 - 12:18 AM

Also, perhaps setting the UserAgent to Googlebot's will allow access, many pay-for-access sites are configured this way...

#12 intimidat0r

intimidat0r

    SUPR3M3 31337 Mack Daddy P1MP

  • Members
  • 455 posts

Posted 15 July 2007 - 01:43 AM

I decided to take a closer look to see if I could understand what was going on. I highlighted the text and pasted it into a text editor. You'll probably notice that if you try to do this they move the registration reminder over whatever box your mouse is inside of. You can avoid that by starting to highlight at the question and scrolling down to the bottom.


Or use the handy dandy view source button!

Good work, though. I remember being frustrated many a time when people were asking my exact questions on EE. =/

#13 ntheory

ntheory

    data pillager

  • Agents of the Revolution
  • 1,757 posts

Posted 19 July 2007 - 02:18 PM

haha... it's funny that I didn't think rot13 at first and that I didn't bother viewing the source. They're encrypting it on the fly in Javascript? That's just ridiculous.

Oh well, I hope someone had fun playing with this. Next time, if I have time, I'll be more thorough.

#14 xGERMx

xGERMx

    SUPR3M3 31337 Mack Daddy P1MP

  • Members
  • 459 posts

Posted 19 July 2007 - 03:36 PM

Also, perhaps setting the UserAgent to Googlebot's will allow access, many pay-for-access sites are configured this way...

...also good for forums that require registration to view.




BinRev is hosted by the great people at Lunarpages!