Might as well post a more direct link: http://samy.pl/opensesame/

noobie · on June 4, 2015

The "source code" of http://samy.pl is quite interesting

    /*
    No source for you!
    *//
    /.source.replace(/.{7}/g,function(w){document.write(String.fromCharCode(parseInt(w.replace(/ /g,'0').replace(/	/g,'1'),2)))});

jsingleton · on June 4, 2015

There is a huge amount of whitespace is the page source. A mix of tabs and spaces. The page is encoded in that. Have a look in the inspector to see the decoded result. It's a bit like this: https://en.wikipedia.org/wiki/Whitespace_%28programming_lang...

echeese · on June 4, 2015

Ah, looks like they have a regex that is just whitespace, get the source of it, and do some replacements to turn it into code. 7 bit binary, with spaces = 0 and tabs = 1

justaman · on June 4, 2015

Nazi...

the-dude · on June 4, 2015

This is a reference to 'The Soup Nazi' ( Seinfeld )

No soup for you!

justaman · on June 4, 2015

Thanks Dude.

noobie · on June 4, 2015

His name is Lebowski!

thanatropism · on June 5, 2015

Say what you will about the tenets of National Soup-cialism, at least it's an ethos.

sctb · on June 4, 2015

Thanks, we updated the link from https://threatpost.com/using-a-toy-to-open-a-fixed-code-gara....

heywire · on June 4, 2015

Strangely the old link works fine for me, but the new one is blocked by my workplace's McAfee filter/firewall.

pierrec · on June 4, 2015

Not really surprised... Samy's website is full of borderline-blackhat material. One might even say that it's his specialty.