Welcome to HBH! If you have tried to register and didn't get a verification email, please using the following link to resend the verification email.

basic 7

  1. Home
  2. Forum
  3. Basic
  4. basic 7

ghost's Avatar

ghost

0 0

i got the username/ password from the source, but i dont know where the binary is. i checked the cookies, and got the same username/ password but still no binary. i tried to use the username i got from the cookies/source and encrypt it, but that didnt work. where is the binary/ am i on the right track?


interslice's Avatar

interslice

Member
0 0

isnt it only 1 injection? the injection to alter the username cookie?


ghost's Avatar

ghost

0 0

ok i injected the binary, changed the username cookie, and pushed enter after putting the binary into the login. is this right? if you want to see how i injected it, ill pm you i dont wanna post spoilers


ghost's Avatar

ghost

0 0

never mind it wasnt working because of spaces in the binary


ghost's Avatar

ghost

0 0

ok, what r the injecctions for changing cookies? i got the rest pretty much bu t i cant figure that out. gimme a hand plz, a link that'll help or something


ghost's Avatar

ghost

0 0

ok, what r the injecctions for changing cookies? i got the rest pretty much bu t i cant figure that out. gimme a hand plz, a link that'll help or something


ghost's Avatar

ghost

0 0

ok, what r the injecctions for changing cookies? i got the rest pretty much bu t i cant figure that out. gimme a hand plz, a link that'll help or something


ghost's Avatar

ghost

0 0

omg srry, triple post…


ghost's Avatar

ghost

0 0

yay i got it, u need 2 put the java thing, and in the () u need to have "" on the left side of username, and on the right side of the binary. hope this helps! now, i gotta do the SQL injection


ghost's Avatar

ghost

0 0

I'm having a huge problem with Basic Challenge 7. I found the Username & Password. Here's what I am doing : I put in the Username and click enter; it pops up and says "Sorry you are not autenticated". What does this mean? It's not a ban because it's in the little green challenge box. What do I do?? And what is a SQL injection and how do I do and it and why do I have to do it for the challenge?


ghost's Avatar

ghost

0 0

Search button is your friend, google is even a better freind, and reading is your best freind. Research my friend, try to teach yourself some things, feels good once you figure it out!