What if http://cosecha-transmisiones.com/ has more?

[green calx]

there are so many numbers hidden in songs.

for example in Gemini (woman voice in radio noises)
Cold Earth (propably?)
Telepath
Palace Posy
Nothing is Real ("twelve" around first minute)
Transmissiones Ferox ...

[ryanhewitt]

edit: another thing, according to Whois, it's due to expire 23/04/14 and it was updated on 19/10/13 (updated with what?) http://whois.domaintools.com/cosecha-transmisiones.com

The "updated" date in whois means the last time the domain was renewed. I'm seeing April 23rd, 2013 as the last updated date on at that domaintools link you sent. Nothing about October 2013.

under the 'Registration' tab - "Updated:2013-10-19"

[several]

so i went through and pressed all the buttons. here are the ones that do stuff.

Code: Select all

win. button left: [
win. button right:\
pulldown menu button: ]
numpad 0: -
numpad 1: #
numpad 2: clears text, same with up/down arrow buttons and numpad 8.
numpad 3: "
numpad 4: %
numpad 5: nothing, maybe a zero width space?
numpad 6: '
numpad 7: $
numpad 9: !
numpad /: o
numpad *: j
numpad -: -, like it should
numpad +: k
F1: p
F2: q
F3: r
F4: s
F5: t
F6: u
F7: v
F8: w
F9: x
F10: y
F11: z
F12: {
arrow left: %
arrow right: '
insert: -
delete: .
home: $
end: #
page up: !
page down: "

this is probably totally useless and i'm 85% sure that spending 10 minutes doing this was a waste of time but whatever

[anecdote]

so i went through and pressed all the buttons. here are the ones that do stuff.

you forgot a few

. = n
+ = k

[drixlin]

Another little tidbit...

I just tried typing in words with spaces, when I hit the "up" arrow to see what I put in, the spaces were removed from the text...

If others experience the same thing, then it's safe to say there is no spaces allowed in the password (which makes sense, all the numbers were entered together without dashes or spaces).

[ryanhewitt]

Another little tidbit...

I just tried typing in words with spaces, when I hit the "up" arrow to see what I put in, the spaces were removed from the text...

If others experience the same thing, then it's safe to say there is no spaces allowed in the password (which makes sense, all the numbers were entered together without dashes or spaces).

the numerical password still works with spaces in ...

¯\(°_o)/¯

[drixlin]

I know it does - my post may not have been clear - the site removes the spaces you enter in your digits.

You can't see it if you put the right password in.

Type out the sequence with spaces, with one wrong number...then, after you get the error, hit the up arrow and see your incorrect password - now with no spaces.

[BrunchTime]

Hey guys, someone might have done this already, but i cleaned up cosecha-transmisiones.com's "terminal.js" file that's referenced in "x.js". I figure this could be worth looking into, but it's way over my head, especially at 2 AM. There's a function called "match" that might be worth looking into, and a LOT of one letter variables getting passed around, and it looks like there's a tree getting searched at the core of things.. Dunno how much of this might just be to throw us off the path, but some java wizard might find some gold in here. Some juicy instances of "password" in there.. dunno if this is actually interacting with an actual instance of VAX?? might be worth looking into the interworkings of the OS, i dunno man, the deeper i get into this stuff the more confused i get, which is probably a good sign.

https://drive.google.com/file/d/0B93UyS ... sp=sharing

[egbdf]

I don't have the right combination of time and skills to look at that javascript now, but maybe something could be learned from it. My guess is that when the user enters something (a password), it's sent with an ajax request to the server, which validates it. If the validation is boolean (i.e., just yes or no), then there's nothing more to discover. On the other hand, if the ajax response is more than boolean (i.e., more than just yes or no), then that would indicate there are more behaviors than "password is wrong" and "password is right, here's the video". That still wouldn't necessarily tell us what needs to be typed in to get the third behavior.

[fake mistakes]

So in a few hours the website is going to expire/shut down?
I have a feeling somthing is going to happen soon. Not sure what but just have a feeling.

[Techboy]

https://drive.google.com/file/d/0B93UySi7nLY7aUhqSkFMME9JTjA/edit?usp=sharing

lool that's just minified jquery man.

the important bit of what goes on is this:

Code: Select all

var attemptPassword = function(password, success, fail) {

  $.getJSON("password.php?attempt="+password, function(data){
    if (data.error === true){
      ga('send', 'event', 'password', 'fail', password, 1);
      fail();
    } else {
      ga('send', 'event', 'password', 'success', password, 1);
      window.location = data.url;
    }
    console.log(data);
  })
//  var t = setTimeout(fail, 500);
}

i.e. send the password to the server; if it returns a URL go there. So the only functionality is redirection to another URL when a password is properly entered.

So in a few hours the website is going to expire/shut down?
I have a feeling somthing is going to happen soon. Not sure what but just have a feeling.

No:
Updated Date: 2014-03-22 21:21:19Z

unsurprisingly. When you create a domain name you're pretty much morally obliged to keep it, haha. Otherwise it'd be a prime target for scams / whatever.

M

[BrunchTime]

https://drive.google.com/file/d/0B93UySi7nLY7aUhqSkFMME9JTjA/edit?usp=sharing

lool that's just minified jquery man.

Well shucks. Thanks bruh.

[ryanhewitt]

i.e. send the password to the server; if it returns a URL go there. So the only functionality is redirection to another URL when a password is properly entered.

I'm having a hard time following all this, so is this confirmation that there is no other function than to lead to the Semena Mertvykh video?

[Najlepsiejszy]

i.e. send the password to the server; if it returns a URL go there. So the only functionality is redirection to another URL when a password is properly entered.

I'm having a hard time following all this, so is this confirmation that there is no other function than to lead to the Semena Mertvykh video?

Yes, the site is empty

[ryanhewitt]

i.e. send the password to the server; if it returns a URL go there. So the only functionality is redirection to another URL when a password is properly entered.

I'm having a hard time following all this, so is this confirmation that there is no other function than to lead to the Semena Mertvykh video?

Yes, the site is empty

boner-killer

[egbdf]

i.e. send the password to the server; if it returns a URL go there. So the only functionality is redirection to another URL when a password is properly entered.

I'm having a hard time following all this, so is this confirmation that there is no other function than to lead to the Semena Mertvykh video?

Yes, the site is empty

Probably but not necessarily. If the server returns a URL based on the password entered, that doesn't rule out that there could be different URL's returned for different passwords. I haven't looked deeply at the code myself. I'm just going by what Techboy said.

[Techboy]

^ what he said

[arvy]

Anybody noticed a little dot at the bottom of Password? I didn't see that before

[Skimming Stone]

Anyone notice the hexagon if you view page source?

[arvy]

just check it on other pc and no dots, probably it's just my bug