• Mouse Around the World:A unifrog clone
    42 replies, posted
[img]http://gyazo.com/2f391bb899ca0218ff03a1703e65bd44.png[/img] [img]http://gyazo.com/2e495b34f549a943a33f862e3a43df44.png[/img] Yeah, I made a Unifrog clone, only this uses mouse movement instead of just time. Features: -Fully online. You can [url=foxprods.net/experimentalists/mousemove/register.html]Register[/url] and then login via the application. -All stats saved online. -Almost impossible to cheat!(Unless you're a huge douche and use a program to move the mouse really quickly.) So go [url=foxprods.net/experimentalists/mousemove/register.html]Register[/url] and then [url=foxprods.net/experimentalists/mousemove/MouseAroundTheWorld.exe]Download[/url] it!
Warning: fopen(mousemove/users/login/.txt) [function.fopen]: failed to open stream: No such file or directory in /home/aquafox/public_html/experimentalists/mousemove/updateStats.php on line 24 I don't feel safe registering here. [url]http://foxprods.net/experimentalists/mousemove/users/login/geel9.txt[/url] Nope. Please us a MySQL database next time. So we go to [url]http://foxprods.net/experimentalists/mousemove/users/stats/[/url] Get the people their username then we go to http://foxprods.net/experimentalists/mousemove/users/login/{username}.txt And get their passwords.
[QUOTE=ddrl46;25564991]Warning: fopen(mousemove/users/login/.txt) [function.fopen]: failed to open stream: No such file or directory in /home/aquafox/public_html/experimentalists/mousemove/updateStats.php on line 24 I don't feel safe registering here. Well that was quick [url]http://foxprods.net/experimentalists/mousemove/users/login/geel9.txt[/url] Nope. Please us a MySQL database next time.[/QUOTE]
wow really? use MySQL oh hey i bet your just stealing people passwords
Don't worry, the people their passwords are just :google: and stuff like that. Nothing important. They wont register anyway when they read the thread.
Not stealing passwords, also, fuck why didn't I use mySQL...
If you used files anyway, why didn't you even bother encrypting the passwords?
Because I thought I set the entire directory to be off-limits to all. Fixed, anyways. [editline]22nd October 2010[/editline] You can't access files within the directory anymore. [url]http://redirectingat.com/?id=629X1198&xs=1&url=http%3A%2F%2Ffoxprods.net%2Fexperimentalists%2Fmousemove%2Fusers%2Flogin%2Fgeel9.txt&sref=http%3A%2F%2Fwww.facepunch.com%2Fshowthread.php%3F1017177-Mouse-Around-the-World-A-unifrog-clone%26p%3D25565150%23post25565150[/url]
[url]http://foxprods.net/experimentalists/mousemove/getStats.php?username=a&password=a&code=abcd125[/url] [url]http://foxprods.net/experimentalists/mousemove/updateStats.php?username=a&password=a&num=Frendly%20hello%20message&code=abcd125[/url] Simple.
Hooray for .NET reflector!
Wat? I simply redirected traffic from app to my local web-server instead of your web server.
Reposting from WAYWO.. [QUOTE=geel9;25564833][img_thumb]http://gyazo.com/2f391bb899ca0218ff03a1703e65bd44.png[/img_thumb] [img_thumb]http://gyazo.com/2e495b34f549a943a33f862e3a43df44.png[/img_thumb] Yeah, I made a fucking Unifrog clone, only this uses mouse movement instead of just time. Features: -Fully online. You can [url=foxprods.net/experimentalists/mousemove/register.html]Register[/url] and then login via the application. -All stats saved online. -Almost impossible to cheat!(Unless you're a huge douche and use a program to move the mouse really quickly.) So go [url=foxprods.net/experimentalists/mousemove/register.html]Register[/url] and then [url=foxprods.net/experimentalists/mousemove/MouseAroundTheWorld.exe]Download[/url] it![/QUOTE] That's some hardcore security.. [code] root@kbh-konscalnix:~# php5 /var/www/tests/curltest.php Logged in.. Current meters: 1337 Settings meters to: 13371337 Current meters: 13371337 [/code] [php] <?php $intMeters = 13371337; $strUsername = "manwithhat"; $strPassword = "hatman1993"; $hndCurl = curl_init(); curl_setopt($hndCurl, CURLOPT_POST, 1); curl_setopt($hndCurl, CURLOPT_RETURNTRANSFER, 1); curl_setopt($hndCurl, CURLOPT_URL, "http://foxprods.net/experimentalists/mousemove/login.php"); curl_setopt($hndCurl, CURLOPT_POSTFIELDS, "username=" . $strUsername . "&password=" . $strPassword . "&ver=1.1"); $strResult = curl_exec($hndCurl); echo "Logged in..\n"; curl_setopt($hndCurl, CURLOPT_URL, "http://foxprods.net/experimentalists/mousemove/getStats.php"); curl_setopt($hndCurl, CURLOPT_POSTFIELDS, "username=" . $strUsername . "&password=" . $strPassword . "&code=abcd125"); $strResult = curl_exec($hndCurl); echo "Current meters: " . $strResult . "\n"; curl_setopt($hndCurl, CURLOPT_URL, "http://foxprods.net/experimentalists/mousemove/updateStats.php"); curl_setopt($hndCurl, CURLOPT_POSTFIELDS, "username=" . $strUsername . "&password=" . $strPassword . "&num=" . $intMeters . "&code=abcd125"); $strResult = curl_exec($hndCurl); echo "Settings meters to: " . $intMeters . "\n"; curl_setopt($hndCurl, CURLOPT_URL, "http://foxprods.net/experimentalists/mousemove/getStats.php"); curl_setopt($hndCurl, CURLOPT_POSTFIELDS, "username=" . $strUsername . "&password=" . $strPassword . "&code=abcd125"); $strResult = curl_exec($hndCurl); echo "Current meters: " . $strResult . "\n"; curl_close($hndCurl); ?> [/php] [editline]22nd October 2010[/editline] With a simple Wireshark output.. [img]http://www.jalsoedesign.net/screenshots/20101022_121137.jpg[/img]
Ah, i tried to make one in C#. I'll stop now. [cpp] using System; using System.Collections.Generic; using System.Linq; using System.Text; using System.Net; namespace GetMeters { class Program { static string UpdateWorker(string username, string password, string version) { WebClient Client = new WebClient(); Random randomInt = new Random(); double x = (randomInt.NextDouble() * 10); string address = "http://foxprods.net/experimentalists/mousemove/updateStats.php?username=" + username + "&password=" + password + "&ver=" + version + "&code=abcd12&num=" + x; string returns = Client.DownloadString(address); return returns; } static string StatsWorker(string username, string password, string version) { WebClient Client = new WebClient(); string address = "http://foxprods.net/experimentalists/mousemove/getStats.php?username=" + username + "&password=" + password + "&ver=" + version + "&code=abcd125"; string returns = Client.DownloadString(address); return returns; } static void Main(string[] args) { string username = "abc"; string password = "abc"; string version = "1.1"; while (true) { string returns = UpdateWorker(username, password, version); Console.WriteLine("Returned: " + returns); string stats = StatsWorker(username, password, version); Console.WriteLine("Current Meters: " + stats); Console.WriteLine(); } } } } [/cpp] Didn't get it working, forgot the post stuff. The StatsWorker works though. [editline]22nd October 2010[/editline] [QUOTE=geel9;25564842] -Almost impossible to cheat!(Unless you're a huge douche and use a program to move the mouse really quickly.) [/QUOTE] :v:
As far as I could see, I could only make cUrl work if I logged in first (whereas curl saves a temp cookie, and uses that). [editline]22nd October 2010[/editline] Also, it doesn't work by sending a little data at a time. You set it all at once, so no while loop needed.
I set it then i get the data back to see if it worked.
And THIS, is why you don't release badly protected applications on Facepunch.
How much do you charge for this?
[QUOTE=Shammah;25566479]How much do you charge for this?[/QUOTE] [url]http://www.facepunch.com/showthread.php?1015414-ArmorGames-Or-quot-We-ll-express-interest-but-we-don-t-actually-give-a-shit.-quot&highlight=[/url]
[QUOTE=Shammah;25566479]How much do you charge for this?[/QUOTE] Im'a guess $1500 - $7000
[QUOTE=ineedateam1;25566632]Im'a guess $1500 - $7000[/QUOTE] Does this include the awesome security?
[QUOTE=ineedateam1;25566632]Im'a guess $1500 - $7000[/QUOTE] Sounds pretty normal for something of this quality.
Poor geel :unsmith:
Or just make it generate a password for you?
Why is it down?
[QUOTE=iNova;25575034]Why is it down?[/QUOTE] You should be able to figure out by reading the thread.
[QUOTE=esalaka;25575277]You should be able to figure out by reading the thread.[/QUOTE] Then again why not fix it instead of removing it..
[QUOTE=iNova;25575340]Then again why not fix it instead of removing it..[/QUOTE] It was mainly a test to see if I did the server "infrastructure" correctly. If I reupload this it'll be using mySQL. [editline]22nd October 2010[/editline] Although I need to think up a method of validating score input...
Only make it go up and not down, make sure the difference isn't too big aswell. And maybe store the time it was last updated in the database and check if it was at least a set time ago?
[QUOTE=ddrl46;25576566]Only make it go up and not down, make sure the difference isn't too big aswell. And maybe store the time it was last updated in the database and check if it was at least a set time ago?[/QUOTE] What do you mean "not down"?
Meters > && ! <
Sorry, you need to Log In to post a reply to this thread.