website to test your security knowledge

jank · 31-03-2004 12:58pm #1

came across this

http://scifi.pages.at/hackits/

16 levels of website security, kinda fun in a way (if you ignore the starfleet feel) but also highlights some good/bad points about security on webistes and how easy they can be hacked

so what do ye make of it?

ps. got to level 5 but need more time to try and progress it more plus my javascript knowlegde is crap to non existent

soiaf · 31-03-2004 10:47pm

Thanks for posting that link. Had a couple of fun hours going through them.
Got through them all - I think the keypad one was probably the most tedious, trying the different combinations (of the numbers that it must be based on the 'algorithm').

The only one I thought you might see out in the 'wild' was the apache password one - I'd hope not, but I suspect they're out there.

Ryaner · 04-04-2004 9:12pm

It's a pretty cool set of things to do. I'm currently on level14. Annoying bit of code and I dont feel like trying it now.

The keypad one wasnt too bad. Maybe I just got lucky with my choices to begin with. Think there only 32 combinations anyways

SantaHoe · 05-04-2004 11:37pm

That's fun, made it to level 11 so far, but I'm going to stop now as it's turning into a bloody JS tutorial with the amount of commands I have to nit-pick through. :rolleyes: :rolleyes: :rolleyes: (I don't know JS either)

conor-mr2 · 11-04-2004 6:53pm

Im stuck on 14 any tips?

conor-mr2 · 12-04-2004 1:30pm

I meant stuck on the one after 14!! Its the one with the tip!

casper- · 13-04-2004 8:18am

Hmm..am stuck trying to get to level 9. The javascript code looks simple enough, but I'm obviously missing something

All it seems to do is redirect you to <page>.htm where <page> is what you enter in the promp text field...

conor-mr2 · 13-04-2004 9:28am

Hi Casper, is this the link

http://www.academy.dyndns.org/hackit8/hackit.htm

you are stuck at?

Try removing the hackit.htm from the url there

casper- · 13-04-2004 9:33am

Originally posted by Conor-Mr2
Hi Casper, is this the link

http://www.academy.dyndns.org/hackit8/hackit.htm

you are stuck at?

Try removing the hackit.htm from the url there

Yes, that was the link I got to

Ouch that's painful .... I'm obviously losing it in my old age .... :dunno:

casper- · 13-04-2004 10:40am

Originally posted by Conor-Mr2
I meant stuck on the one after 14!! Its the one with the tip!

Yep I'm there too now; the interim ones weren't that bad. However, I have to go work for a while now

Will probably give it a shot later today..

conor-mr2 · 13-04-2004 2:00pm

Well my thoughts are on there being an .htaccess or .htpasswd file although i cant seem to find it. If you find out please let me know!!!

soiaf · 13-04-2004 6:56pm

Well my thoughts are on there being an .htaccess or .htpasswd file although i cant seem to find it

Hint: Look for a htpasswd file (without the dot)

conor-mr2 · 14-04-2004 4:29pm

ah. at last. I should have known given that it says the passwd file isnt hidden!!

Ive done the lot now. Was certainly enjoyable.

website to test your security knowledge

Comments