Welcome to HBH! If you have tried to register and didn't get a verification email, please using the following link to resend the verification email.

Basic 9 Tutorial


ghost's Avatar
0 0

You have to know about html, php, sql injecting and poison null byte attack.

  1. look at the source and find the directory where the form perform the searches; The initial message tell you clearly what is the name of the dir you need. However you can look at the source of the page or google it to find the dir.
  2. Ever look all files and all sources. Find a page that is vulnerable to sql injection attack. Try it injecting a sql how y've done in basic8. The page display a password and a form to put her. Once you find that stop and turn to the start page. Else if you put the displayed password in this form you're redirected to a non existent page(in the wrong track).Ok? If you don't have time to spend once you have foud the sql injection vulnerable page turn to the start page.Let's say that is name is larika.php.
  3. You have now to apply the Poison Null Byte attack to the larika.php page from the start page. How the null byte work? What is it? Read about null byte and you'll easly understand how to use it. Now begins the 2nd part of mission.
  4. If all is right you are redirected to a page that tell you in clear and in the source the username and the password to beat the mission.
  5. Turn in the start page and login with this information.

Thanks everybody that put helps,comments and hints in this forum!!


ghost's Avatar
0 0

Larika wrote:

  1. Ever look all files and all sources. Find a page that is vulnerable to sql injection attack. Try it injecting a sql how y've done in basic8. The page display a password and a form to put her. Once you find that stop and turn to the start page. Else if you put the displayed password in this form you're redirected to a non existent page(in the wrong track).Ok? If you don't have time to spend once you have foud the sql injection vulnerable page turn to the start page.Let's say that is name is larika.php.

back to this chapter :) well you've mentioned some about basic 8, well … there we had a database name .. a field name … here we have nothin' ..


ghost's Avatar
0 0

can someone point me in the right direction for this Poison Null Byte challenge? I got all the others in Basic

and yes I have read the forums, and the articles, even ones oustide of the site (u mean theres an outside:o) but no matter what i enter it just errors!

pointers would be good please?

*Edit - Nevermind, I got it. :D

Cheers

Dantronix