realistic 1

Unknown database 'hb_missions'

and a blank page is all i get when i try to log in with the provided username / password

yeah i know. I think this is a problem for all real missions.

it will be fixed within a couple of days.

oh okay…thanks

little help?

this error is fixed

I need help with this mission. I found the hidden txt file. What kind of encryption is it ?

you dont need to decrypt it. just change your cookies ;)

what the hell is a cookie(im new to this)

its a bit like a train ticket:

you get onto the train and you get a ticket with all yoru details. You can also swap your ticket with other people!

same as a cookie: you log into a site, get a cookie, change it to be someone else

I have an article on how to use cookies with JavaScript,

http://www.hellboundhackers.org/readarticle.php?article_id=70

Hope that helps somehow.

Ok im changinf three things in the cookie info, bu then what? How do i login?

dyzlexik wrote: Ok im changinf three things in the cookie info, bu then what? How do i login?

Alright, so log in as the person, change your cookies and hit refresh, you should see be able to click a new link and not get denied if you changed your cookies right.

Warning: Cannot modify header information - headers already sent by (output started at /home/hellboun/public_html/challenges/real1/index.php:21) in /home/hellboun/public_html/challenges/real1/index.php on line 40

I get this on the homepage, could this be the reaon its not working?

uf…. how to login as the person as someone said in a post? i found txt file of that person and admin but both passwords are encripted! i know how to change cookies but i dont know how to login…. can someone explain that plz…

if you read the beginning you would know want to do:

markupYour goal for this mission is to log in as an registered user (johndoe/password) and analyze the site to gain administrator rights to change the price of the program to make it a lot more cheaper.

you login as johndoe, cahnge the cookies and hit refresh.

:) yeah… thnx for that, i havent read it well…

thanx a lot! i made it now

If you want to know the admin password then you can use cai and able and select mysql i think - but this does not work and nor does changing the f'ing cookies for me. Im changing 3 things in the cookie and then refreshing (once loggd in as johndoe) but still no luck araaaaaaaargh I just get that error previously shown on this topic

Is it that I am changing the wrong things, is it: spoiler:

username password authid

Somenone please say if these are wrong and what they should be

Those are incorr3ct however one is right.

How do i edit the price, I'm logged in as johndoe and have changed the cookies, but it won't let me change the price. What now?

ok i found the admin info and changed my password and username but its not letting me change the AuthID anyway…. now wat ame i supposed to do……..!! i'v tried enough so i thought i'll ask for some help……!! can someone help me plz

How is it NOT letting you change your AuthID?

i'v successfully changed username + password…. javascript:void(document.cookie="AuthID=*******"); ame i doin it wrong…!! i donno i'v checked javascript:alert(document.cookie) but its not changed its still the same old one…..!! and i cleared all my cookies and tried again and still i get the same prob……..!!!

Well, i just re-did this mission and it worked for me, send me a pm with all of your commands and i'll try and figure it out.

how do i log in as johndoe? where is the txt file?

Well if you would have read what the your mission objective was before you started the mission you would have known that already.

how do u find the directory of the picture on realistic 1???

Right click it and choose "Copy location." Pasting this into your address bar will allow you to see the directory it's in.

OK, I'm in the directory, now can someone please give me a clue as to how I find the hidden text file. I've looked at the cookie, which has nothing, and I can't look at the source. If I could find that, I could finish the mission.

well, if your in the directory the text file will be staring you in the face!!

I have followed all the advice given in this topic and on every single article on REAL 1 but it seems that it just does not want to work for me. I have tried like 8 times now. please can someone help me.

Look everywhere you can to start out with. Yeah, it can be confusing if you think about it the wrong way I guess. In the level brief when it says log in as a registered user, the info they give isn't an example. So once you've logged in, find a way to mess with the login data(you've probably found out by now) and get admin access.