QUOTE
Tip Number One: One of the most obvious, is in a link that someone gives you, there is hex in the link. CG'ers use hex to avoid the server escaping their code, and also to trick people into clicking them.
Example: %3C%00
Important Link: To see where hex leads you, go to this site: NickCiske.com | HEX- "sweet sixteen", put the hex in the decode section, and press the decode button.
QUOTE
Tip Number Two: Never click a link that has the word javascript, this is used to steal your cookies.
Example: java script:document.write
QUOTE
Tip Number Three: Never click a link that has the word script, this is almost always used in an XSS exploit, usually it looks like the example, or has <> around it.
Example: (%22%3Cscript%20
If you follow these steps you will never get cookie grabbed, or hacked through cookie grabbing, and beware of any strangers giving you complex, or weird links, ask yourself is it worth it not to double check?
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
FAQ
Question: What if I clicked on a cookie grabber link?
Answer: If you believe you clicked a CGe'r, change your password. This will render the cookie the CG'er got useless, because it makes the neopets cookies unusable.
Edited by Kitsune, 24 July 2008 - 08:39 PM.
