Sign In
Create Account
so uh, for my cracker i want to only allow people with 50 likes or more to use it, is there a way of doing this or is there a api for this?
Nulled.to Authentication system?
Started By
iHaveDeBestName
, Aug 31 2018 03:50 PM
#1
Posted 31 August 2018 - 03:50 PM
iHaveDeBestName
Offline
335
Likes
Likes
https://bulkalts.atshop.io/
Posts: 617
Threads: 179
Joined: Apr 20, 2018
Credits: 10
Deal with caution
User has an open scam report.
User has an open scam report.
Six years registered
#1
Posted 31 August 2018 - 03:50 PM
#2
Posted 31 August 2018 - 03:51 PM
MexicanTobato
Offline
1905
Likes
Likes
Veteran
Posts: 1767
Threads: 191
Joined: Mar 05, 2017
Credits: 24
Seven years registered
#3
Posted 31 August 2018 - 04:23 PM
iHaveDeBestName
Offline
335
Likes
Likes
https://bulkalts.atshop.io/
Posts: 617
Threads: 179
Joined: Apr 20, 2018
Credits: 10
Deal with caution
User has an open scam report.
User has an open scam report.
Six years registered
#3
Posted 31 August 2018 - 04:23 PM
ask for https://www.nulled.to/auth.php access
YES BUT HOW DO YOU CHECK FOR THE REQUERIMENTS, how do i check if its valid sorry for caps
#4
Posted 04 September 2018 - 01:38 AM
XenocodeRCE
Offline
4
Likes
Likes
[DllImport("kernel32.dll")]
Posts: 19
Threads: 3
Joined: Aug 01, 2018
Credits: 0
Five years registered
#4
Posted 04 September 2018 - 01:38 AM
YES BUT HOW DO YOU CHECK FOR THE REQUERIMENTS, how do i check if its valid sorry for caps
a basic fame like me got access so should have access to
#5
Posted 04 September 2018 - 08:39 AM
AZATEJ
Offline
2934
Likes
Likes
Infinity black
Posts: 2414
Threads: 311
Joined: May 06, 2017
Credits: 0
Deal with caution
User has an open scam report.
User has an open scam report.
Six years registered
#5
Posted 04 September 2018 - 08:39 AM
You wont get access due to really simple law restrictions which nulled avoid. No matter whatever goldmine would you add to it.
#6
Posted 21 September 2018 - 06:30 PM
Minecon
Offline
541
Likes
Likes
Developer (C#, PHP, and JavaScript) - HQ and Trusted User.
Posts: 757
Threads: 115
Joined: Jan 19, 2018
Credits: 0
Deal with caution
User has an open scam report.
User has an open scam report.
Six years registered
#6
Posted 21 September 2018 - 06:30 PM
I wanted to ask the same a few months ago too...
Well, I see that the authentication system is completely dead - there's no API to do this now.
There's a way to do this:
1. Put a Form (even if your application is a console application) and set its URL to the Nulled.to's login page.
2. Put another Form and put a WebBrowser control in this Form .
3. Set the WebBrowser URL to "https://www.nulled.to/auth.php"
4. Check if the WebBrowser control contains "You meet all requirements and can authenticate" like this:
if (webBrowser1.DocumentText.Contains("You meet all requirements and can authenticate"))
{
// The user is authenticated.
}
What can a hacker do to bypass this?
Simply, he can just create a local webserver and edit the `hosts` file so `nulled.to` points to 127.0.0.1 - then he can create a file called `auth.php` on his local webserver and write "You meet all requirements and can authenticate" in it.
Can I bypass the hacker's bypass?
Yes! Check if the nulled.to's IP starts with 104.x.x.x or no... If no, then the user edited the `hosts` file to bypass this. If yes, then the user didn't try to bypass this.
The hacker still can bypass this but a bit harder.
#8
Posted 12 November 2018 - 05:07 PM
MexicanTobato
Offline
1905
Likes
Likes
Veteran
Posts: 1767
Threads: 191
Joined: Mar 05, 2017
Credits: 24
Seven years registered
#8
Posted 12 November 2018 - 05:07 PM
Harder....? use fiddler.... and edit response.. same ip not host edit and easily bypassed. kiddies.
Easy to say, have you ever heard about 'Protection'?
Users browsing this thread:
