Web Exploration

Firefox tricks
1. Open page, and the in the address bar enter
  - ```
        javascript:alert(document.cookie) 
```
  to see the cookies.
2. Lotus Notes
  1. ```
           javascript:void(document.forms[0].submit())  
```
  will save a web form even if you have hidden the Save button!
2. catalog.nsf database obviously gives you a list of other databases that you can then look at.
3. Another interesting database is the Name & Address book (typically /names.nsf)
4. Depending on the version of Domino is running, you can try accessing the hidden $Users view of the Name & Address book. This view contains the unsalted HTTP password hashes of all the users. You would typically look for http://noteshost/names.nsf/$Users
5. http://www.sdii.com/Falling-Dominos-FAQ-1.0.PDF
6. Change Notes db ACL Go to hexadecimal address 000000BC and change the value from 20 to 00.
  - Change the HEX value bcH (188) from 20 to 00 (This is valid With ODS 21, 41 and 43).

...

webexplore (last edited 2009-05-31 17:47:23 by PieterSmit)

Page.execute = 0.001s
getACL = 0.000s
init = 0.001s
load_multi_cfg = 0.000s
run = 0.010s
send_page = 0.008s
send_page_content = 0.001s
total = 0.010s