Saw an interesting puzzle, blogging about it in English is not zhuangbility, but to avoid n00b finding solutions too easily via search engines.
- Sniff
- No packets transfered when click 'submit', so all answers must be downloaded somewhere to client
- Firebug analyze URL requests & responses
- Decompiled all .swf files, nothing found
- Found it's using PHP-RPC
- Tried phprpc-python but didn't work
- Worked out puzzle 2. answer is bomb
- Dumped all browser memory
- Search for keyword bomb
- Got all answers to 15 questions
- Copy, paste & submit all the right answers, but nothing happend, so just blogging about it http://initiative.yo2.cn/archives/639837
- ???
- Profit!
有道居然用PHPRPC把所有答案加密了。哼哼。任何加密都挡不住内存dump大法。
So, here's the answers:
以下是剧透,丧失游戏乐趣后果自负,没有自己动脑筋思考的同学请不要手贱,报名参加真正的TopCoder比赛吧:http://www.youdao.com/nanti/apply.php
<?xml version="1.0" encoding="utf-8" ?>
<data radius="220" a="320" b="170" skey="youdao">
<question src="questions/q1oioqzvveoalz.fa.swf" answer="o" lowcase="true" visible="true">一样的人物</question>
<question src="questions/q80afzfdqrezxc0-rwq.f0.swf" answer="bomb" lowcase="true" visible="true">湖边的回忆</question>
<question src="questions/q4098azvhlaql.f-fq53.swf" answer="0441" visible="true">危险之地</question>
<question src="questions/q3zlllweafl342laozl.swf" answer="@($" visible="true" locked="true">火星文</question>
<question src="questions/q5zpaqa.eop2-f-qe4.swf" answer="也可能" visible="true" locked="true">博客中的线索</question>
<question src="questions/q6pkltix.04.-af.swf" answer="本机地址" visible="true" locked="true">IT码农的留言</question>
<question src="questions/q70a9fdalqrexc65o.vz.swf" answer="search engine" lowcase="true" visible="true" locked="true">曲径通幽</question>
<question src="questions/q909qalzxovaltazt-fq.fq.swf" answer="为" visible="true" locked="true">手机词典的帮助</question>
<question src="questions/q10090zvalzp-f.4.swf" answer="3624087915" visible="true" locked="true">古诗中的数字</question>
<question src="questions/q2098alzraz.5.ao.swf" answer="12355331" visible="true" locked="true">彩铃包月</question>
<question src="questions/q1109zgflqre0f-aw.w2.swf" answer="2月18日||二月十八日" visible="true" locked="true">和智玲的聊天</question>
<question src="questions/q120z0fda2r.z0f-a2.swf" answer="cctv" lowcase="true" visible="true" locked="true">黑客是怎样炼成的</question>
<question src="questions/q13-zf0w2rzlf0.f43.swf" answer="圆周率||祖冲之" visible="true" open="15" locked="true">Morse的登录</question>
<question src="questions/q1409falz-fa.2aof.swf" answer="0731-5310163" visible="true" locked="true">错误的号码</question>
<question src="questions/q160z-af.4er0zafwe.swf" answer="LOVE" visible="true" locked="true">数学之美</question>
<question src="questions/q170z.gzzf-32zflgpqert.swf" answer="ONLMK" lowcase="true" visible="false">残破的画卷</question>
</data>
Seems that there's even a hidden puzzle: http://www.youdao.com/nanti/mi/questions/q170z.gzzf-32zflgpqert.swf but I haven't figured out how to invoke it (yet) . Perhaps using some .swf hook 
[...] http://initiative.yo2.cn/archives/639837: 有道这个JR居然用PHPRPC把所有答案加密了。哼哼。任何加密都挡不住内存dump大法。 [...]
围观下~~
Twitter观光团来了~
我有试着解phprpc 可惜没成功
订阅了
豆党观光团`
牛人,我现在就去攻克难题囧
呵呵 最后几个没看懂
est用什么工具把浏览器的内存dump下来啊?
WinHex
我用了windbg……
答案呢?谁知道告诉我一下,我的邮箱looksbackon#163.com谢了
他为什么不用md5加盐呢?
[...] 真心想挑战的人应该不会看到这篇文章,因为你根本无需借助下面的答案去投机取巧。不过leesum感觉颇有乐趣将NB人士破解的有道难题(有道难题用PHPRPC把答案加密了)答案小小的透露下。 [...]
围观~
题目明显的抄袭, 很多题的含义都是英文题才能准确表达的.
比如第一题, 是英文的character, "角色","字符"双关.
第二题, 英文倒过来写.
还有电话号码的那个, 一冰箱的英文单词, 却拼出汉语拼音changsha
摩斯电码那个, 也不把morse翻译过来
竖排press cctv那个, 提问翻译成 "输入"什么 以后索然无味
完全丧失了英文原题文字游戏的乐趣! 就好象中英混杂的一坨屎.
附上据说是有道内部员工的详解:
http://hi.baidu.com/dxb_lazycat/blog/item/91446dca45475017be09e6fd.html
楼上一定在05年超女选秀时参加过某个粉丝团,这种意淫自逼愤青范让人似曾相识。出题的时候就故意设定了中英文的一些跳转和切换,目的就是希望找到真正对英文没啥障碍也没啥心结的人,结果把你给揪出来了。学计算机的不懂啥叫press,不知道char是什么,不知道morse,还要给你翻译出来,你是来做题还是来找阿姨要糖吃啊……做地上哭也就罢了,还狠狠的说哼中英混杂一陀屎,你跟一陀屎这么较劲,你是苍蝇还是蛆呢?
路过,围观
围观。。。
楼主牛人。。。。