1. Post #1
    2014 SH Pun Award Nominee
    Awesomecaek's Avatar
    January 2009
    21,268 Posts
    Well, I would like to know, how can you fake the strings you send on web the way you like.

    Like if I had to fill in a form and there were options to choose either Male or Female, but I would want to send the option Marmelade to the server.

    I know that possibly the server is not going to respond to any unpredicted option, but I have my own use for it and I would be very grateful for help.

  2. Post #2
    Gold Member
    Nisd's Avatar
    October 2008
    436 Posts
    Opera and Internet Explorer can do it out of the box.
    Opera got something called Dargonfly.
    And i think IE's is just called IE Developer tool
    Reply With Quote Edit / Delete Reply Denmark Show Events Bad Spelling Bad Spelling x 2 (list)

  3. Post #3
    Gold Member
    Tu154M's Avatar
    October 2008
    5,730 Posts
    That only works with text boxes.

    Basically, the form where you choose male or female knows only two options, the male one being -let's say- 1 and female being 2. The "male" and "female" are only there so you know what to click, the server doesn't receive them in that exact string. It only receives 1 if you're male and 2 if you're female. Won't accept anything else.
    Reply With Quote Edit / Delete Reply Germany Show Events Bad Reading Bad Reading x 1 (list)

  4. Post #4
    Gold Member
    andersonmat's Avatar
    May 2008
    2,607 Posts
    Firebug should let you edit the page to post.
    Reply With Quote Edit / Delete Reply United States Show Events Friendly Friendly x 2 (list)

  5. Post #5
    Sickle's Avatar
    November 2009
    6,600 Posts
    Well, I would like to know, how can you fake the strings you send on web the way you like.

    Like if I had to fill in a form and there were options to choose either Male or Female, but I would want to send the option Marmelade to the server.

    I know that possibly the server is not going to respond to any unpredicted option, but I have my own use for it and I would be very grateful for help.
    Are you trying to    SQL injection/XSS    a website?

    That is a VERY bad thing to do, you will go to jail.
    Reply With Quote Edit / Delete Reply South Africa Show Events Funny Funny x 3Friendly Friendly x 1 (list)

  6. Post #6
    Gold Member
    Tu154M's Avatar
    October 2008
    5,730 Posts
    Are you trying to    SQL injection/XSS    a website?

    That is a VERY bad thing to do, you will go to jail.
    Seeing as he doesn't even understand the general functioning of HTML forms I doubt he'd be able to do that.
    Reply With Quote Edit / Delete Reply Germany Show Events Agree Agree x 4 (list)

  7. Post #7
    2014 SH Pun Award Nominee
    Awesomecaek's Avatar
    January 2009
    21,268 Posts
    That only works with text boxes.

    Basically, the form where you choose male or female knows only two options, the male one being -let's say- 1 and female being 2. The "male" and "female" are only there so you know what to click, the server doesn't receive them in that exact string. It only receives 1 if you're male and 2 if you're female. Won't accept anything else.
    I do understand this, because I know there is the option 3, it just isn't included in the form. I am asking how to do it.

  8. Post #8
    Nat Taggart's Avatar
    December 2009
    11 Posts
    http://getfirebug.com/

    Then just edit the HTML.
    If you can't do that you should give up.
    Reply With Quote Edit / Delete Reply Romania Show Events Friendly Friendly x 3 (list)

  9. Post #9
    2014 SH Pun Award Nominee
    Awesomecaek's Avatar
    January 2009
    21,268 Posts
    http://getfirebug.com/

    Then just edit the HTML.
    If you can't do that you should give up.
    That's what I needed. Thanks alot.

    Edited:

    Holy butterballs - I hacked my first page

    On that private Wow server, you are able to choose if your account is liable to play either just the basic Wow, or the datadisc TBC. There is HTML form to modify that option.
    The joke is that the server is now testing the second datadisc - third option, but it's not available choice for normal players. By simply sending value of 2 instead of normally available values 0 and 1, I changed my account to be liable to play on the second datadisc.


    I know it's harmless and insignificant thing, but it means a lot for me.
    Reply With Quote Edit / Delete Reply Czech Republic Show Events Dumb Dumb x 4Friendly Friendly x 1 (list)

  10. Post #10
    Gold Member
    Benjy355's Avatar
    January 2006
    264 Posts
    If the field had an ID aswell as a Name, you could just play with some javascript... (Enter it in the address bar, etc..)

  11. Post #11
    Nat Taggart's Avatar
    December 2009
    11 Posts
    it means a lot for me.
    Have you ever considered professional help?
    Reply With Quote Edit / Delete Reply Romania Show Events Funny Funny x 11Disagree Disagree x 1 (list)

  12. Post #12

    April 2009
    708 Posts
    That is a VERY bad thing to do, you will go to jail.
    Unless you do something super high profile, you will not go to jail.

    Even if you get reported to your ISP, in my experience, nothing happens.

  13. Post #13
    :^)
    Wipmuck's Avatar
    May 2009
    1,770 Posts
    SQL injecting wont sent you to jail, just dont deface it with your address whilst you use an vpn and your set.

    Oh and don't root the box's, thats bad.
    Reply With Quote Edit / Delete Reply Australia Show Events Dumb Dumb x 2Bad Reading Bad Reading x 1 (list)

  14. Post #14
    Mr.Hoff's Avatar
    July 2009
    447 Posts
    Firebug and tamperdata.

  15. Post #15

    April 2009
    708 Posts

  16. Post #16
    Nat Taggart's Avatar
    December 2009
    11 Posts
    SQL injecting wont sent you to jail, just dont deface it with your address whilst you use an vpn and your set.

    Oh and don't root the box's, thats bad.
    Do you even realize that you have no fucking idea what you're talking about?

    Edited:

    Fiddler is a Web Debugging Proxy which logs all HTTP(S) traffic between your computer and the Internet.
    But will it fiddle my diddle?
    Reply With Quote Edit / Delete Reply Romania Show Events Funny Funny x 2Informative Informative x 1 (list)

  17. Post #17
    :^)
    Wipmuck's Avatar
    May 2009
    1,770 Posts
    Do you even realize that you have no fucking idea what you're talking about?
    I know exactly what im talking about.
    Reply With Quote Edit / Delete Reply Australia Show Events Informative Informative x 1 (list)

  18. Post #18
    Nat Taggart's Avatar
    December 2009
    11 Posts
    I know exactly what im talking about.
    OK you keep telling yourself that.