BWH 9

ghost

0 0

17 years ago

Well I've been working on it for a couple of hours now..

I've read up on Null Byte attacks, I've found the search page (you are inside the file), and I know I'm supposed to be looking for a certain login page with a .php ending (don't want to give it away)

I know what the page is called, but I've got no idea how I would get to it if I hadn't seen it on the forums…

If anyone could give me a bump in the right direction on how to look for that page I'd really appreciate it :)

-Oh and I've been straight to the files folder but I'm getting access denied.

ghost

0 0

17 years ago

maybe you should do the poison …. in the right place

ghost

0 0

17 years ago

Thanks alot I'll work on it now :)

ghost

0 0

17 years ago

One hint: this said poison…well you know doesn't have to be typed in the URL bar. Think :D If this was a spoiler someone say so and I'll remove it.

Actually it appears as if this challenge might be down. The folder that you need first and foremost seems to be 'forbidden'. Meh :|

jaggedlancer

The Localhost Hacker

20 0

17 years ago

Only the login is down, if you enter the user: pass on the main challenge page it works though ;)

ghost

0 0

17 years ago

Yo people, im stuck :( . I have read about the NULL Byte, but i still dont know what to type in.

I found the files but i only see 3 php files.

I dont know what to do with them. I clicked them and nothing happened.

How am i suposed to "use" the null byte?

Thanks

ghost

0 0

17 years ago

master of puppets wrote: Yo people, im stuck :( . I have read about the NULL Byte, but i still dont know what to type in.

I found the files but i only see 3 php files.

I dont know what to do with them. I clicked them and nothing happened.

How am i suposed to "use" the null byte?

Thanks

Find the file, and then use the null byte to view it. And remember, as has been stated above where could you type that file and add the null byte? It doesn't have to be in the URL bar.