varx/tech on Nostr: I noticed a very strange URL today, a JS resource in a parking permit renewal site: ...
I noticed a very strange URL today, a JS resource in a parking permit renewal site:
https[://]prodpci[.]etimspayments[.]com/orld-Swearer-they-profes-ayre-andlessedomenthoug
It's a constant string, as far as I can tell. Which is weird, because it looks like the output of a passphrase generator, except with characters dropped?
It returns a bunch of garbage-y stuff, but not just the usual compressed JS—at a glance, it looks obfuscated. Also, after logging in, there's a POST to this endpoint that returns JSON with a `token` field.
This is at https://prodpci.etimspayments.com/pbw/include/somerville/rpp_login.jsp if anyone is curious.
https[://]prodpci[.]etimspayments[.]com/orld-Swearer-they-profes-ayre-andlessedomenthoug
It's a constant string, as far as I can tell. Which is weird, because it looks like the output of a passphrase generator, except with characters dropped?
It returns a bunch of garbage-y stuff, but not just the usual compressed JS—at a glance, it looks obfuscated. Also, after logging in, there's a POST to this endpoint that returns JSON with a `token` field.
This is at https://prodpci.etimspayments.com/pbw/include/somerville/rpp_login.jsp if anyone is curious.