Thread: Using VBScript to Fill Out a Web Form
View Single Post
  #9 (permalink)  
Old April 17th, 2009, 09:38 PM
Inforequester Inforequester is offline
Registered User
  
Join Date: Apr 2009
Posts: 5
Thanks: 0
Thanked 0 Times in 0 Posts
Lightbulb Try This Out !!!
Well I understand that you believe the codes change with each download, but I am %110 sure that this can be done as well. Maybe not the same exact source code that I displayed earlier, but there are plenty of software apps out there that can automate posting to Craigslist with 1 simple click of a button. I know that some of those particular web bots were designed in VB 2008.

Here's another VBScript that I wrote that works sometimes, but sometimes just isn't good enough. Try it out and see if you can tamper it into shape:


Code:
 
set a = createobject("wscript.shell")
a.run "https://post.craigslist.org/sfo/S/msg/sfc/9"
wscript.sleep (8000)
a.SendKeys "{TAB 10}"
wscript.sleep (2000)
a.sendkeys ("Whatever ad Title that you want")
a.SendKeys "{TAB}"
a.sendkeys ("10.00 !!!")
a.SendKeys "{TAB}"
a.sendkeys ("[email protected]")
a.SendKeys "{TAB}"
a.sendkeys ("[email protected]")
a.SendKeys "{TAB 2}"
a.sendkeys ("whatever ad that you want***BZ***: http://store.payloadz.com/results/st...d-results.html")
wscript.sleep (2000)
a.SendKeys "{TAB}"
wscript.sleep (2000)
a.SendKeys "{Enter}"
wscript.sleep (4000)
a.SendKeys "{TAB 10}"
wscript.sleep (2000)
a.SendKeys "{Enter}"
wscript.sleep (4000)
a.SendKeys "{TAB 15}"
wscript.sleep (2000)
a.SendKeys "{Enter}"
call msgbox("Finished")
wscript.quit

This is a pretty cool WEBBOT most of the time, but most of the time isn't good enough either. ;oD

It will get you all the way to the CAPTCHA point most of the time & then you will see the finished box.

**** Don't click any windows while it's in process ***

Please try your best to fix this script to perfection.... Thanks !!!









Quote:
Originally Posted by Old Pedant View Post
I don't think the form, per se, is encrypted. I do think that the *names* of the form fields and the values of certain HIDDEN form fields are encrypted, and that they use that indeed as a way to ensure that you can't just keep submitting the same <form> over and over. Each post you make must be made with a new <form> that you get from them.

And the form field names change on each reload of the page. So your VBS code would have to scan all the fields and figure out, by position, which one is doing what. So you can't just "fill in the ?" as somebody suggested. You first have to figure out what ? is for this particular incarnation of the <form>.

No, I don't know how to do that using the MSIE object scripted by VBS. I think I could do it by "screen scraping", using ServerXMLHTTP, as I suggested. But it's not a trivial task and would take several hours. With no guarantees it works, at the end.

I looked at their JS library and didn't *see* anything doing client-side encryption. Doesn't mean it's not there. But I don't see why it would matter if there is, if you are indeed invoking the browser itself.

I think it's mainly just the field names and then hidden form field values that have to agree to constitute a valid post, so far as their protection software is concerned.
Reply With Quote