Steve8x

Yeah Javascript is pimp! I always liked it since the beginning! EDIT: Updated Scripts... Added some new ones/ shorter code ones. Besides writing your Javascript on your own web pages, I like to write little javascripts to be injected over other pages too! Check out these I wrote and you'll see what I mean... The following scripts can be used on facebooks site to achieve what each one does... They are prefixed with 'javascript:' because they are meant to be used from your browser's URL field, 'javascript:' tells it to execute the following as javascript rather then trying to interpret it as a url or a search. NOTE * Latest versions of firefox for a while now have blocked the use of javascript via the 'javascript:' prefix from being used whatsoever! So either use firebug and execute the javascript from its console which will work, or an alternative browser. NOTE * Chrome now removes the 'javascript:' if its on your clipboard with whatever you paste into the URL field (your javascript) so you have to manually type the 'javascript:' at the beginning of chrome's URL field after you've pasted the script, even if 'javascript:' was part of what you copied. FB Login: javascript: login = document.forms['login_form']; login.email.value = "youremail@whatever.com"; login.pass.value = "yourpassword"; login.submit(); This works from the homepage when not logged in, it takes the login form fills out the two necessary fields and submits it. "login = document.forms[0];" could be used instead in this case, but I figured it is better to use the form's name as it's less likely to change, though they probably wont make a form besides the login form on the homepage that comes before it. FB Login v2: (including enabling/disabling the 'stay logged in' checkbox aka persist_box javascript: login = document.forms['login_form']; for(var i in login.elements) { if(login.elements[i].id == "persist_box") { stayLoggedInCheckbox = login.elements[i]; } } login.email.value = ""; login.pass.value = ""; stayLoggedInCheckbox.checked = 0; login.submit(); Changing that one line into this 'stayLoggedInCheckbox.checked = 1;' will check the stay logged in checkbox instead of unchecking it Then I realised I could shorten it even for like this: (because I like to write my scripts as short as possible [least lines]) FB Login v3: javascript: login = document.forms['login_form']; stayLoggedInCheckbox = document.getElementById('persist_box'); login.email.value = ""; login.pass.value = ""; stayLoggedInCheckbox.checked = 1; login.submit(); FB Logout: javascript: document.forms.logout_form.submit(); Logs out if logged in... could also be written like: ( :D ) javascript: document.forms['logout_form'].submit(); Fill out all open chat tab's text area's: (It was supposed to be send msg to everyone whose chat tabs are open, but I couldn't figure out how to actually send the message to anyone from any tab let alone everyone... It's a bit different from submitting a form I think for this one, someone better at javascript analyzing/debugging complete this script and get it working! xD) javascript: ChatTabs = document.getElementById('fbDockChatTabs'); AllTabs = ChatTabs.getElementsByTagName('*'); for (i in AllTabs) { var Tab = AllTabs[i]; if(Tab.type == "textarea") { Tab.value = "Hello EVERYONE! LOLOLOLOL xD"; } } void(0); And my personal favorite one, and which was a little trickier than the others. Took me a few revisions until I got it working! Post status update / Post on someone's wall: (whether you're somewhere where you'll post a status update for yourself, or on someone else' page where it will post there instead) [Post Status Update v0.5] javascript: PageTextAreas = document.getElementsByTagName('textarea'); PageForms = document.getElementsByTagName('form'); StatusUpdateText = PageTextAreas[0]; StatusUpdateForm = PageForms[0]; for (i = 0; i < PageTextAreas.length; i++) { var TextInput = PageTextAreas[i]; if(TextInput.className.indexOf("uiTextareaAutogrow input mentionsTextarea textInput") != -1) { if(TextInput.className.indexOf("DOMControl_placeholder") != -1) { StatusUpdateText = TextInput; break; } } } for (i = 0; i < PageForms.length; i++) { if(PageForms[i].action.indexOf("/ajax/updatestatus.php") != -1) { StatusUpdateForm = PageForms[i]; StatusUpdateText.value = "Yo, whats good everyone?! xD"; StatusUpdateForm.submit(); } } void(0); I found that the text area of the page containing the keywords 'uiTextareaAutogrow input mentionsTextarea textInput' and 'DOMControl_placeholder' was the right place to put the text for status updates / wall posts and also that the action of the form responsible for them was containing '/ajax/updatestatus.php'! With both of those you can then modify the text and submit a status update!! I suppose an improvement could include a delay after filling out the text to for example allow for links that load content to be properly posted. Alright there was some fun javascripts I was working on! Off to go and write some more!

I know what thats from foo ;) But anyway whats up with most people not having any icons whatsoever? lol my desktop looks almost as cluttered as darren's right now. You know I start off with my basic icons, web browsers, irc client, a few games, programming IDE's, putty, OllyDbg+IDAPro, and some other good to have apps. Then slowly things start to get cluttered as I work on projects and add more icons to the screen. Then when it gets real bad I take some time to clean it. Which usually amounts to putting the junk somewhere else lol. Just make a new folder called junk and cram it all in there. Problem solved. But If I'm not being lazy I'll actually go through it and delete what I don't want and keep what I do. Anyway this will probably be useful to me as I too hate it when the icons get screwed up. Doesn't happen all the time, but sometimes when a game crashes or something goes wrong; Thats when it screws up my icons! I'll give it a try :D

Stick to windows for now, Once your a comfortable Win32 C++ programmer you may want to try and take on coding for linux. The best C++ compiler ever: http://www.microsoft.com/express/vc/ Microsoft Visual C++ 2008 Express Edition Microsoft knows their shit^^^ So you can thank them for providing this awsome C++ compiler absolutely free Don't torrent the FULL Visual Studio 2008! it really isn't neccessary, its a huge download and doesn't include anything needed, that you don't get with the express edition(it just has the extra stuff, VB, VC#, etc.. things a C++ programmer doesn't need) And when your ready to release your application(If your going to) then follow this thread to make it fully portable(as in it will run on any windows machine) http://hak5.org/forums/index.php?showtopic=10279

X3n I never thought of that! But its a good GREAT idea actually! Only issue is it would be a little awkward receiving your log files in an instant messenger! lol... Although for services like MSN, you don't have to be signed online to get your logs, once you sign on you'll get all your messages, I think its called offline messaging... You'd have to decide whether you'd want to send them in plaintext(to save time so when you look at it in your instant messenger you can just read the log and copy and paste it into a file to save it. Or you could send it encoded/encrypted, and have to do an extra step decoding/decrypting the copy and pasted data from the IM window... You could possibly even use the IM apps own save log file option, and have a custom app read through it and decode/decrypt the content, it would have to know how to read the file saved from that particular IM so it would be able to get the content only and not the: message from user: info saved with the file... Doing it wouldn't be to hard I don't think, You'll just have to do some packet sniffing with your IM of choice and figure out how it communicates with the server to login and send some instant messages! ;) Then code a client app which does only the basics, sign in, send IM! And as you said IM accounts are a dime a dozen you can easily make one just for this purpose and you really don't care if the user+password is discovered since it isnt for anything important... I'll look into it see if I can figure it out! I think I'll go with MSN/Windows Live Messenger

Ahh, I see now! Thanks digip! ;) I was looking for the option under the user CP, instead of right in a thread itself! That's why I couldn't find it at first...

Hi, recently I have been annoyed by posts in a thread not showing up on the page all at once, instead I see the first post of the thread, then below it are links to other posts. It didn't used to be like this, before it showed the posts! Not sure what caused the change, I did not change any settings. Is there a setting I'm not finding? I looked in the My Controls and can't seem to find a way switch it back to normal... here's an image that shows what I mean: Instead of showing that bottom part with links to make the posts show, I'd like the posts to just be there, and if theres more than 1 page I can click the next page! How do you change it back to normal?

Well lets see how it all pans out! As we all know politicians promise more than they can really do(Since they want to win, Say whatever it takes, do whatever it takes to win, then relax lol). So apparently Mr. Barrack convinced more people that he's the better choice. So lets find out what he can actually do. ;) In time we will know...

Yes you can see where the log is being posted to, but you can't see the password to the mysql database ;) If your sending the logs to your own computer your own ip, then you have a problem... So thats why you create a free web hosting account with one of the many free web hosts (with fake info of course) You don't use a paid for host!!! Also you should create a website as a front! so the free web host wont shut your site down for not having any actual content. Because they do check them once in a while to make sure your complying with their TOS. X3N, yes you can virtually do anything with the PHP code once you have received the data on it, I just demonstrated using mysql databases, because thats something that lots of hosts offer plus its fairly easy to insert data into! Sometimes on free hosts certain things are limited. But mysql databases are plentiful ;)

I haven't ever heard of this program, but to answer your question. How hard is it to make? For what you want, its very simple. Since you don't even care about what the client(the web browser connecting to the server) is requesting, you don't have to interpret what you recieve, since you'll always sent the same response to redirect them to a different url... You kind of have the wrong idea though.. "portscanned" ? A server does not have to scan for anything, instead it "listens" for connections on the port its binded to! since web servers normally go on port 80, thats the port clients will connect to the server on. No port scanning required, you already know the port where connections will come through... I have made a simple web server app which does what you described... Its called "xServer" There are multiple ways of redirecting the client to a specified URL. I chose this method: send them some simple html that the browser will understand and reload the page to the new URL... <html><meta http-equiv="refresh" content="0;url=http://www.RedirectToHere.com"></html> putting that html on a web page will cause the page to "refresh" after 0 seconds, to RedirectToHere.com! ;) It works like this, you run it for the first time and it creates a default "config.ini" file, which contains the character "1" on the first line and the default site to redirect to, that being "http://www.google.com" the "1" means to write to the access log file! The access log file records the ip address, page requested, and HTTP version information from clients who connect to the server. Note that it doesn't matter what is requested, it isn't taken into consideration, it always just forwards them to the URL you specify in the edit box... an access log looks something like this: 127.0.0.1 -- 11/04/08 20:43:25 -- GET / HTTP/1.1 127.0.0.1 -- 11/04/08 20:43:57 -- GET / HTTP/1.1 67.159.45.52 -- 11/04/08 21:24:38 -- GET / HTTP/1.0 127.0.0.1 -- 11/04/08 21:26:31 -- GET / HTTP/1.1 127.0.0.1 -- 11/04/08 21:36:03 -- GET / HTTP/1.1 you can goto a proxy site like this as a test: proxypimp.com(only 1 I can ever remember lol) and type in your ip address(or domain name if you have one) and if you are port forwarded correctly(no firewalls blocking the port), you will see the redirection happen, and if you check your access.log it will show the ip address of the computer that connected along with the date and time, and what was requested ex. "GET /" is the root folder, and HTTP/1.1 is the version :P You can turn the access log recording off, by simply unchecking the box, remember to hit "save config" if you want to save your changes to the config file so you don't have to type the url in everytime or uncheck/check the box every time. it remembers your settings for you... You can also minimize the app to the system tray by simply minimizing it! closing the window with the [x] will terminate the program... Same with "Quit" on the tray menu when minimized... It's far from a full blown web server like apache, but it demonstrates how easy it can be for a simple web server... source code and binary:(exe is in Release folder) http://popeax.com/x/xServer.zip I have the server running now but not on port 80 like the released version is setup to run on. (port 80 is the default HTTP port, when you type a url in your browser like: http://www.google.com/ it connects to it on port 80... if you specify however: http://www.google.com:8080 it will instead try to connect on port 8080 http://popeax.com:1337 It should redirect you to a certain website... ;) [xServer.cpp] //xServer v1.0 a simple HTTP Server //Which redirects all requests //to a specified URL! //Written By Steve8x #include "xServer.h" using namespace std; xServer x; EZwindows ez; NOTIFYICONDATA* n = new NOTIFYICONDATA; char* url = new char[1024]; int WINAPI WinMain(HINSTANCE hInstance, HINSTANCE hPrevInstance, LPSTR lpCmd, int nCmdShow) { MSG Msg; WNDCLASSEX wc; ez.hInst = hInstance; HBRUSH ButtonFaceBrush = CreateSolidBrush(GetSysColor(COLOR_BTNFACE)); wc.cbSize = sizeof(WNDCLASSEX); wc.hInstance = hInstance; wc.lpszClassName = L"xServer_Class"; wc.lpfnWndProc = WndProc; wc.style = CS_DBLCLKS; wc.hIcon = LoadIcon(hInstance, MAKEINTRESOURCE(101)); wc.hIconSm = LoadIcon(hInstance, MAKEINTRESOURCE(101)); wc.hCursor = LoadCursor(0, IDC_ARROW); wc.lpszMenuName = NULL; wc.cbClsExtra = 0; wc.cbWndExtra = 0; wc.hbrBackground = ButtonFaceBrush; RegisterClassEx(&wc); // Initialize common controls library! ez.InitCommonCtrls(); InitFonts(); //Create the window hwnd = CreateWindowExA(0, "xServer_Class", "Server 1.0", WS_OVERLAPPED | WS_CAPTION | WS_SYSMENU | WS_MINIMIZEBOX | WS_CLIPSIBLINGS, CW_USEDEFAULT, CW_USEDEFAULT, 245, 145, HWND_DESKTOP, 0, hInstance, 0); hText = ez.text(hwnd, "Redirect clients to this URL:", 1, 1, 250, 20, 200); hEdit = ez.edit(hwnd, 1, 0, 0, 1, 18, 235, 20, 300); hStatus = ez.text(hwnd, "Status: Server Is Down!", 1, 40, 260, 20, 201); hStart = ez.button(hwnd, "Start Server", 1, 60, 75, 20, 420); hStop = ez.button(hwnd, "Stop Server", 80, 60, 75, 20, 421); hSave = ez.button(hwnd, "Save Config", 159, 60, 75, 20, 422); hCheck = ez.check(hwnd, "Write to access log", 1, 84, 148, 20, 500); SendMessage(hText, WM_SETFONT, (WPARAM)txtFont, 1); SendMessage(hEdit, WM_SETFONT, (WPARAM)editFont, 1); SendMessage(hStart, WM_SETFONT, (WPARAM)txtFont, 1); SendMessage(hStop, WM_SETFONT, (WPARAM)txtFont, 1); SendMessage(hSave, WM_SETFONT, (WPARAM)txtFont, 1); ReadIni(); EnableWindow(hStop, 0); //Show the window ShowWindow(hwnd, nCmdShow); UpdateWindow(hwnd); //Init winsock 2.2 WSADATA wsaData = {0}; WSAStartup(MAKEWORD(2, 2), &wsaData); while(GetMessage(&Msg, 0, 0, 0)) { TranslateMessage(&Msg); DispatchMessage(&Msg); } return Msg.wParam; } LRESULT CALLBACK WndProc(HWND hWnd, UINT message, WPARAM wParam, LPARAM lParam) { static UINT TaskbarRestart; switch (message) { case WM_CREATE: TaskbarRestart = RegisterWindowMessageA("TaskbarCreated"); break; case MSG_XTRAYICON: if(wParam != 0x13379) { break; } if(lParam == WM_LBUTTONUP) { n->uID = 0x13379; Shell_NotifyIcon(NIM_DELETE, n); ShowWindow(hwnd, SW_RESTORE); } else if(lParam == WM_RBUTTONUP) { HMENU menu = 0; menu = CreatePopupMenu(); AppendMenuA(menu, MF_STRING, IDM_SHOWWND, "Show"); AppendMenuA(menu, MF_STRING, IDM_TRAYABOUT, "About"); AppendMenuA(menu, MF_STRING, IDM_TRAYEXIT, "Quit"); POINT* p = new POINT; GetCursorPos(p); SetForegroundWindow(hwnd); TrackPopupMenu(menu, 0, p->x, p->y, 0, hwnd, 0); SendMessage(hwnd, WM_NULL, 0, 0); } break; case WM_COMMAND: if(wParam == IDM_SHOWWND) { n->uID = 0x13379; Shell_NotifyIcon(NIM_DELETE, n); ShowWindow(hwnd, SW_RESTORE); } else if(wParam == IDM_TRAYABOUT) { MessageBoxA(0, "xServer 1.0 © 2008\n\nCoded by Steve8x", "About", MB_OK); } else if(wParam == IDM_TRAYEXIT) { Shell_NotifyIcon(NIM_DELETE, n); Running = 0; x.Close(client); x.Close(x.servsock); SetWindowTextA(hStatus, "Status: Server Is Down!"); EnableWindow(hStart, 1); EnableWindow(hStop, 0); ExitProcess(0); } if(wParam == 420) { if(!Running) { Running = 1; x.StartServer(80); //Server Should Run On Port 80! CreateThread(0, 0, (LPTHREAD_START_ROUTINE)&ListenThread, 0, 0, 0); SetWindowTextA(hStatus, "Status: Server Up And Running!"); EnableWindow(hStart, 0); EnableWindow(hStop, 1); } } else if(wParam == 421) { if(Running) { Running = 0; x.Close(client); x.Close(x.servsock); SetWindowTextA(hStatus, "Status: Server Is Down!"); EnableWindow(hStart, 1); EnableWindow(hStop, 0); } } else if(wParam == 422) { SaveIni(); } else if(wParam == 500) { LRESULT l = SendMessage(hCheck, BM_GETCHECK, 0, 0); if(l == BST_CHECKED) { x.WriteToLog = 1; } else { x.WriteToLog = 0; } SaveIni(); } else if(HIWORD(wParam) == EN_CHANGE) { if(LOWORD(wParam) == 300) { ZeroMemory(url, 1024); GetWindowTextA(hEdit, url, 1024); } } break; case WM_LBUTTONDOWN: //I do this for all my app's I like dragging the window from anywhere SendMessage(hWnd, WM_NCLBUTTONDOWN, HTCAPTION, lParam); break; case WM_CTLCOLORSTATIC: SetBkMode((HDC)wParam, TRANSPARENT); return (LRESULT)GetStockObject(COLOR_BTNFACE); break; case WM_SYSCOMMAND: if(wParam == 0xF020)// window was minimized so send app to tray! { MinimizeToTray(); break; } return DefWindowProc(hWnd, message, wParam, lParam); case WM_CLOSE: delete[] url; DeleteObject(txtFont); DeleteObject(editFont); WSACleanup(); PostQuitMessage(0); break; default: if(message == TaskbarRestart) { MinimizeToTray(); } return DefWindowProc (hWnd, message, wParam, lParam); } return 0; } void ListenThread() { for(;; Sleep(10)) { client = x.Accept(); if(Running == 0) { ExitThread(0); } if(client != INVALID_SOCKET) { OutputDebugStringA("Client Connected!"); CreateThread(0, 0, (LPTHREAD_START_ROUTINE)&RedirectClient, 0, 0, 0); } } } void RedirectClient() { SOCKET tmpsock = client; char* tmp = new char[1024]; char xdate[9]; char xtime[9]; int contentlen = 0; string recvdata = ""; string senddata = ""; string logstring = ""; _strdate(xdate); _strtime(xtime); sprintf(tmp, RedirectCode, url); contentlen = strlen(tmp); senddata.assign(tmp); sprintf(tmp, HTTPheader, xdate, xtime, contentlen); senddata.insert(0, tmp); recvdata = recvx(tmpsock); sendx(tmpsock, senddata); size_t strsize; strsize = recvdata.find("Host"); if(x.WriteToLog == TRUE) { f = fopen("access.log", "ab"); fwrite(recvdata.c_str(), strsize, 1, f); fclose(f); } x.Close(client); delete[] tmp; } void InitFonts() { lFont.lfHeight = 14; lFont.lfWeight = 420; wcscpy(lFont.lfFaceName, L"MS Sans Serif"); txtFont = CreateFontIndirect(&lFont); lFont.lfHeight = 16; lFont.lfWeight = 420; wcscpy(lFont.lfFaceName, L"Terminal"); editFont = CreateFontIndirect(&lFont); } long getfilesize(FILE* file) { long temp; fseek(f, 0, SEEK_END); temp = ftell(f); rewind(f); return temp; } void ReadIni() { ZeroMemory(url, 1000); f = fopen("config.ini", "rb"); if(!f) { //if it doesn't exist yet save the default config f = fopen("config.ini", "wb"); strcpy(url, "http://www.google.com"); fwrite("1\r\n", 3, 1, f); fwrite(url, strlen(url), 1, f); fclose(f); x.WriteToLog = 1; SendMessage(hCheck, BM_SETCHECK, 1, 0); } else { long StrSize = getfilesize(f); fread(url, 3, 1, f); if(url[0] == '1') { SendMessage(hCheck, BM_SETCHECK, 1, 0); x.WriteToLog = 1; } fread(url, StrSize, 1, f); fclose(f); } SetWindowTextA(hEdit, url); } void SaveIni() { f = fopen("config.ini", "wb"); if(x.WriteToLog == TRUE) fwrite("1\r\n", 3, 1, f); else fwrite("0\r\n", 3, 1, f); fwrite(url, strlen(url), 1, f); fclose(f); } void MinimizeToTray() { n->cbSize = sizeof(NOTIFYICONDATA); n->hWnd = hwnd; n->uFlags = NIF_ICON | NIF_MESSAGE | NIF_TIP; n->uCallbackMessage = MSG_XTRAYICON; n->hIcon = (HICON)LoadImage(GetModuleHandle(0), MAKEINTRESOURCE(101), IMAGE_ICON, 16, 16, 0); n->uID = 0x13379; wcscpy(n->szTip, L"xServer 1.0"); Shell_NotifyIcon(NIM_ADD, n); ShowWindow(hwnd, SW_MINIMIZE); ShowWindow(hwnd, SW_HIDE); }

Multi-Threading is a technique that programmers use to make their applications faster! Imagine you have one function that executes code and does two things one after the other... That code is running in 1 thread... If you split it up into two threads, you can get the job done faster. You'll have two running threads simultaneously. However if the first thing has to be done before the second, then you wont be able to make it two threads since you need the output from the first block of code before you can run the second... Make Sense? A search on google for "Threads" gives this as the second result... http://en.wikipedia.org/wiki/Multi-threading I don't code in VB though so I wouldn't be able to help you with the code.. C++ ftw... ;)

yeah same, I haven't been there since some year in the 1990's probably about 10 years ago! lol That explains why its probably down... Back when I had Windows 95! ;) Anyway yeah thats what I'm looking for, something were you can telnet in... I'll checkout HackThisSite but it seems a little different than hackerslab... (no telnet)

Hello I recently remembered a website I found a long time ago that was pretty cool! It's called hackers lab and basically the idea was there's different levels, and you have to figure out how to get to the next level by using your hacking skills! Each level becomes harder and harder. Back when I discovered the website I wasn't that great with computers yet so I couldn't get past the second level. (Some how I made it to the second level, the first must've been really easy) Anyway now I remembered it and wanted to try to again and see if I could get farther! but the problem is it is down now... The website is still up but the telnet server is down :( http://www.hackerslab.org/eorg/ So basically is there anything else like hackerlab.org that is up and running? It's a cool idea, and you won't get in any trouble, too bad its down...

Alright I was messing around with it today and made the example app... It works similar to what I said previously except instead of using double quotes " you use single quotes! So for example instead of :name="Steve" you do :name='Steve' I did it that way because if you wanted to use double quotes you'd have to write a backslash \ before each " (to escape it) and I thought that would be annoying so I just made it a single quote... ;) You can also use most special characters[because I encode the field data before sending it], except for single quote(obviously since it will end the value early) and & the & sign is used to separate field=value's from each other this is an example of the content the app actually posts name=Steve&comment=hello+my+name+is+steve%21 So you can't put another & in there anywhere other wise somethings going to get cut off as it thinks your specifying a new field name and value.. the +'s are just spaces(you don't have to write plus though when doing spaces it converts it for you) the %21 is what all special characters are changed into its the hex byte of the character. %21 or 0x21 is a ! here's some example usage: You can test it on http://popeax.com/x/ and see the result of your post... there is no actual html form, only a script to accept posted data... the two values that it looks for for input are "name" and "comment" so doing a: frmpost -h popeax.com -s /x/index.php :name='My Name' :comment='Hello World!' would submit at comment to that web page ;) source code + binary: (Release folder contains binary executable) http://popeax.com/x/frmpost.zip batch scripting anyone? :) That should help you out with whatever your trying to do...

Well I think the best way to do it would be a standalone app. Not an addon to IE... Have it read a list of urls from a text file... It will download and read each page individually... for example when it finds a form: <form action="/path/to/script.php" method="post"> <input name="fname" type="text" size="24" maxlength="15"> <input name="pass" type="text" size="24" maxlength="15"> <input name="postform" type="submit" value="Submit!"> </form> Get the input names and then post your data to them... It will be kind of difficult to make it dynamic (where as it will work for any page) You'd have to read the different input types and know the name's of the fields, and know what to put in them... How will you know what to put in the fields is the biggest problem? because not all fields are named the same on different sites, and they all need different values. For example, how will you know your not putting a name in a zipcode field? You called it "auto-fill" it should be called "auto-post"... What have you normally done? What do you "fill" in the boxes? just random stuff or what? Another benefit of downloading the html with winsock and then posting to the page is that you bypass any javascript/clientsided form-field validation... (however where your submitting the form to most likely has checks there which can't be bypassed since they are server sided!) I would suggest looking up HTTP protocol, particularly HTTP POST... This can also help you out too: http://hak5.org/forums/index.php?showtopic=10535 It's a recent thing I made which does what you want, it auto-posts form data to a server sided script... EDIT: I just came up with an idea actually but what are you going to be inputting into the fields? random numbers and letters or what? an app similar to that except it lets you specify the field names and values, something like this: lets say the app is called "formsubmit" formsubmit -h www.peoriabloomingtoncarloans.com -s /scripts/App.dll :fname="Bob" :lname="0x539" :WPhone="123-456-7890" :Addr="123 Burning Tree Lane" :city="Somecity" :State="somestate" :zip="zipcode" :comments="I'm interested in getting pre-approved for a vehicle" etc... * I only did the required fields on that form ;) where -h is the host, -s is the path to the script which its probably not a real Win32 "DLL" file , its probably some sort of scripting language like php disguised, maybe CGI, or ASP... then the fields are identified by some kind of marker, here I chose : marks the start of a field name, and = marks the end of it, then between the quotes is what to put in that field... make sense? It would take quite some time manually writing things to put into the fields, so I don't really get it... So are you wanting random values in the fields ? or ones that make sense? Anyway what would this do for you? I don't see what your getting out of it spamming junk to auto-loan forms? It doesn't seem like theres any benefit...

Strangely I can't seem to get the desired effect on my myspace page... I also tried: alert.js: function HackedUpSpace() { alert("Welcome to my myspace page!"); } alert.html <html> <script type="text/javascript" src="http://popeax.com/alert.js"></script> <body onload="HackedUpSpace();" /> </html> still no avail! Can someone else test it and confirm its working? Maybe I'm just doing something wrong?