"your ip has been banned for this challenge"
Is is normal? :D
[reply]
user: zomgwtfbbq
rank: user
level: thc uber elite
state: offline
joined: 01-01-2012
posts: 53
done: 95.2%
Lol yes it is. Just try a different ip address and next time use a technique to bypass WAFs. ;)
[reply]
Oh damn, since I have a fixed IP I have to use some slow public proxies. Any chance to get my IP unbanned, just one time? :)
[reply]
what is WAFs? I got the same result that ended up having me to go through list of proxies and all of the various injections werent working. am I doing something wrong or is it a very specific injection? or is the injection being checked that we must bypass the checking part? tips or pointers would be helpful!
[reply]
user: zomgwtfbbq
rank: user
level: thc uber elite
state: offline
joined: 01-01-2012
posts: 53
done: 95.2%
@orpalis: sorry, otherwise everyone will ask that ;)
@synstealth: google for bypassing wafs
[reply]
I have tried many ways to bypass the wafs, I still get no luck
ex:
/*drop*/, /*d*/+/*r*/+ ... etx. I still get either wrong query or banned ip. I went through the entire list of proxies! lol
[reply]
user: zomgwtfbbq
rank: user
level: thc uber elite
state: offline
joined: 01-01-2012
posts: 53
done: 95.2%
You're close, read this: http://jeannotclement.wordpress.com/2011/01/16/advanced-evasion-technique/
[reply]
almost scare i thinking got ban
[reply]
so now all my ip's are banned :-(
i tried almost everything. The problem indicates the '. I tried in URL encode, hex, base64.
I used this https://jeannotclement.wordpress.com/2011/01/16/advanced-evasion-technique/ and several other ressources. How else i can encode the ' ?
[reply]
I tried this so many times. I went through several tutorials, tried every encoding, got 20 IPs banned, but I can't get the right solution. Could anyone please give me a helpfull hint?
[reply]
user: zomgwtfbbq
rank: user
level: thc uber elite
state: offline
joined: 01-01-2012
posts: 53
done: 95.2%
I've updated the challenge and dropped the ip ban.
The key to finishing this challenge is to use comments, can't say much more or I'll surely spoil it. There's no need to encode your string, the filter is pretty simple.
[reply]