Level 0
Go to the website! Natas 0
Using the drop down you can select a level...
Go to the website! Natas 0
Right click, click source to look at the html, The password is in the source code in the comments
Right clicking still worked for me. But in firefox you can go to the top right to the 3 bars. Go to more tools and view source code from there
> Viewing the source code reveals that the pixel image is in the file directory. In the url I typed in /file to access that directory. Within the users.txt file is the password.
There is nothing of interet in the source code. My first thought was to go to the websites robots.txt page. According to google, A robots.txt file tells search engine crawlers which URLs the crawler can access on your site. This reveals a directory called s3cr3t. The password is in the users.txt file.
To solve this challenge I knew I had to manipulate where the website thought I was originating from. This is called an HTTP referer. Google it. I was using firefox as my web browser and looked up an extension that can manipulate the http referer. The one I used is called Referer Control. I simply filtered the site I wanted it to affect and input the natas5 url. When refreshing the page using the clickable link I was given the password.
In this challenge we are denied access but there is no hint as to what will give us access this time. One point of approach that I took last time was to look at the cookies and see if they can be manipulated to give me access. It turns out that in this challenge this was the solution. In inspect (on firefox for me), I went to the cookies tab and saw one with the variable loggedin, which was set to 0. I set the value to 1, refreshed the page, and got the password.
In this challenge there is a form and a link to the PHP code. Looking at the PHP code shows us that that user input in the form is compared to the secret variable. My first thought was to check out the secret.inc file by manipulating the url. Although this was actually the correct method, I made a dumb mistake and went down a rabbit hole of possible injection attacks to try and trick the server into giving me access. It turns out by my first idea was correct and by adding /includes/secret.inc to the url(without index.php) and right clicking to view source will give the form secret. Entering the secret into the form will reveal the password.
This was one of the easier challenges and involved more url manipulation. Looking at the source code a hint is given that the password is located at /etc/natas_webpass/natas8. In the url you can see that you can access certain pages of the website by changing the value of page. To reveal the password I changed the value of page to /etc/natas_webpass/natas8.
Coming Soon!
Coming Soon!
Coming Soon!