Skip to content

hax0ring

Intercepting Requests to Unlock Hidden Functionality

When you fill out a form on a website and hit submit, your browser constructs a POST request and sends it to the website so that it can decide what to do with that information. It would contain not only the data you entered into the form but information about your login session and a cross-site request forgery token (hopefully).

If you're interested in understanding a website's functionality, capturing requests as they exit your browser lets you examine how to effectively interact with the site, as these requests are crafted by developers to elicit successful responses. You can use this insight to create custom requests, which can sometimes yield intriguing results.

Let's look at how to do that with a simple example.

From Firefox to Ungoogled Chromium

Classic Firefox Icon

This past Wednesday Mozilla dropped a bombshell.

When you upload or input information through Firefox, you hereby grant us a nonexclusive, royalty-free, worldwide license to use that information.

Ungoogled Chromium Red Icon

For many years I was very proud to be a Mozilla user. Over time I came to think of them as the lesser of two evils. And now, I just don't want anything to do with them.

I switched to Ungoogled Chromium and inside are some details.

Fun with Retroarch on Linux

RetroArch Game Library with Thumbnails and Screenshots

Retroarch is a frontend for emulators. It basically merges multiple systems into a customizable interface with unified settings. I'm going to show you how I build and configure my classic game box and we'll look at the scripts I use to get roms onto it. By the end we will have a complete collection of games, thumbnails, screenshots, and database info about every game ever released for multiple classic gaming consoles. Then we'll do some other fun things like organizing a random game picker.