Welcome to HBH! If you have tried to register and didn't get a verification email, please using the following link to resend the verification email.

I had to try it XD

  1. Home
  2. Forum
  3. Testing
  4. I had to try it XD

ghost's Avatar

ghost

0 0

<iframe width="443" name="I2" height="399" src="http://www.google.com" border="1" frameborder="1"align="left" hspace="0" vspace="0"></iframe>

[iframe width="443" name="II2" height="399" src="http://www.google.com" border="1" frameborder="1"align="left" hspace="0" vspace="0"][/iframe]


ghost's Avatar

ghost

0 0

SANTA wrote: <iframe width="443" name="I2" height="399" src="http://www.google.com" border="1" frameborder="1"align="left" hspace="0" vspace="0"></iframe>

[iframe width="443" name="II2" height="399" src="http://www.google.com" border="1" frameborder="1"align="left" hspace="0" vspace="0"][/iframe]<iframe width="443" name="I2" height="399" src="http://www.google.com" border="1" frameborder="1"align="left" hspace="0" vspace="0"></iframe>

[iframe width="443" name="II2" height="399" src="http://www.google.com" border="1" frameborder="1"align="left" hspace="0" vspace="0"][/iframe]


ghost's Avatar

ghost

0 0

SANTA wrote: [quote]SANTA wrote: <iframe width="443" name="I2" height="399" src="http://www.google.com" border="1" frameborder="1"align="left" hspace="0" vspace="0"></iframe>

[iframe width="443" name="II2" height="399" src="http://www.google.com" border="1" frameborder="1"align="left" hspace="0" vspace="0"][/iframe]<iframe width="443" name="I2" height="399" src="http://www.google.com" border="1" frameborder="1"align="left" hspace="0" vspace="0"></iframe>

[iframe width="443" name="II2" height="399" src="http://www.google.com" border="1" frameborder="1"align="left" hspace="0" vspace="0"][/iframe][iframe width="443" name="II2" height="399" src="http://www.google.com" border="1" frameborder="1"[/quote]"align="left" hspace="0" vspace="0"][/iframe]


ghost's Avatar

ghost

0 0

What exactly is the purpose of this..


ghost's Avatar

ghost

0 0

just testing out hbh's filters <img src=/images/img<%Response.Write(Request.QueryString('nextimg'))%>%gt;


ghost's Avatar

ghost

0 0

<html> <body> <h1> This will never work you know. </h1> <center> <p> I know it wont work. </p> </center> <script language="text/javascript"> document.write ("I'm not sure If I'm doing this right. XD") </script> <?php echo "<a href=\"http://www.google.com\">Google</a>"; ?> </body> </html>

LMFAO XD


ghost's Avatar

ghost

0 0

<IMG SRC='vbscript:msgbox("XSS")'>


ghost's Avatar

ghost

0 0

Disabling smileys might..help..just..the slightest..bit. :D


ghost's Avatar

ghost

0 0

markup&lt;IMG DYNSRC=&quot;javascript:alert(&#39;XSS&#39;);&quot;&gt;


ghost's Avatar

ghost

0 0

Give up. XD


ghost's Avatar

ghost

0 0

lol why is a nob who has done like 2 chalenges telling and me to give up? that jsut strkes me as strange.


ghost's Avatar

ghost

0 0

I've done 37 challenges. And I'm not a "nob", yeh nub.


ghost's Avatar

ghost

0 0

lol enc, app, flash,root,logic,steg,SE and other dont count. They are strange types of challs they may popup in strange circumstances. but not all the time.


ghost's Avatar

ghost

0 0

The forum is secure..


ghost's Avatar

ghost

0 0

nothing is 100% secure i think i will find a hole eventually.


ghost's Avatar

ghost

0 0

good luck.. but when you find out it doesnt work.. edit post.. so no one knows what your really doing. =)


ghost's Avatar

ghost

0 0

SANTA wrote: lol why is a nob who has done like 2 chalenges telling and uber elite to give up? that jsut strkes me as strange.

I wish I could rip out your liver for saying that!

So what if you are uber elite, it doesn't really show much for you if you think that HBH missions equate to real life!

@Swift - actually the forums were vulnerable to CSRF placement yesterday!


ghost's Avatar

ghost

0 0

SwiftNomad wrote: good luck.. but when you find out it doesnt work.. edit post.. so no one knows what your really doing. =) Hmm am i the only person that thinks Swift is a bit negative. And i wouldnt edit my post because i wouldnt try to hide the fact of wat i did.


ghost's Avatar

ghost

0 0

I think he meant when you do find something change it so none else can copy your idea


ghost's Avatar

ghost

0 0

oh ok my bad sorry mis unerstood him


ghost's Avatar

ghost

0 0

SwiftNomad wrote: The forum is secure..

Not true =]


ghost's Avatar

ghost

0 0

<A HREF="http://1113982867/">XSS</A>


ghost's Avatar

ghost

0 0

btw santa if you're going to talk down on people because the challenges they did don't really count maybe you should do more of the realistic ones..


ghost's Avatar

ghost

0 0

lol good call im in the process of oing those challs


ghost's Avatar

ghost

0 0

javascript:alert(exidous is the man)

vbmsgbox "exidous is the shit",Vbokonly,"Exidous rox" if vbokonly then end if vbmsgbox "l8ter",vbokonly,"Exidous" else end sub


ghost's Avatar

ghost

0 0

Meh?> Wow, I know now how to have quotes within quotes(kinda, at least looks close enough)!markupYAYThanks for giving me the idea to mess around with stuffmarkupTestAnother testmarkupAnd another

And why don't people use preview when testing for XSS? Or does that act dfferently in some way than viewing a post?


ghost's Avatar

ghost

0 0

sakarin wrote: btw santa if you're going to talk down on people because the challenges they did don't really count maybe you should do more of the realistic ones..

I actually find the realistic ones very un-realistic.