Join us on Slack!
Capitalism is an Island of wealth in a sea of poverty
Tuesday, May 21, 2019
 Need Help?
Members Online
Total Online: 45
Guests Online: 43
Members Online: 2

Registered Members: 114072
Newest Member: NickTauri
Latest Articles

Realistic mission 7

Arrow Image Article about Real 7, no spoilers

Hi everyone!

This is my first article on HBH and I have chosen Real 7 b/c there is no article about it so far. Now lets get started

So, you need to hack the facultys site which means:
1. find out the teachers' password,
2. change his grades to A, B, C, C, A, A
3. change the system administrators salary to $4,000 and
4. get access to the admin folder which is .htaccess protected.
You have the name of the Student - Yoni Segel.

For starters, you go and review the teachers page, to see which teachers are employed i.e. we need their usernames. It is very easy to find them from their e-mails. Next step, the passwords. So if you go and see details for anyone of them and notice the URL. It says something like So the action=NAME&&id==… is a VERY interesting part, isn't it?

Now that you have the passwords from ALL the teachers, I repeat 'from ALL the teachers' you can log in as the one that is the System Administrator (I will not tell you which one, you will have to work that out by yourself). But, not so fast. We get a message saying :

You must come from the admin URL to view you control panel.

Next task, find the correct admin URL and edit your referer (try RefControl for Firefox).

Once you get the referer right you are in. Next, try to work out a way to change the grades in the correct order (local copy of the page or javascript would do just fine). Next, the easiest part – change the salary of the teacher.

Next, you need to get access to the ADMIN folder. You will need to look at all the pages to find the location of hash with the password for the ADMIN folder (Basic 1 style) and then use na exploit to view it. TIP: It doesn't have to be hash FILE. Use to find out how Apache handles folder access and protection. The name of the file is not exactly the same (use plural &*61514;). The exploit is present on one of the main pages of the site. Once you got the hash, use JTR to crack it (no wordlists needed).

When you finally get the username and password go to the admin folder and …

No, it's not over yet. It says BECOME ADMIN is not completed. No, you need to do something to change your status to admin. What could that be? I'm off to a break now, for some tea and cookies and when I come back I will finish this tutorial…

P.S. Sorry for my bad English, it is not my native language. And sorry if this article contains spoilers, I did all my best to tell you just enough not to spoil the fun.

Bye now,
Jonny Cage


chislamon June 09 2006 - 23:35:56
Nice article, however there was an article on it already Grin though i wish i had this one when i did it 5 / 5
What_A_Legendon June 10 2006 - 00:26:39
There is already an article on this mission by System_Meltdown but still great little article i hope 2 use it soon for real 7 Grin
system_meltdownon June 11 2006 - 20:40:09
Yea lol, I wrote an article on this Pfft Pretty good though
masterioron June 12 2006 - 01:06:57
every time i do this it says that ai missed a part Sad good artical though
jonny_cageon June 12 2006 - 15:47:45
Thank you all for your support. I haven't noticed that there was another article for this mission. Nice article, system_meltdown, I appreceite your work.
TotcoSon March 23 2007 - 05:49:57
i found like 6 different admins..
wakeride115on June 14 2007 - 05:30:35
i also found more than one admin. I like tea and CoOkIeS too!!:ninja:
Little Bad Wolfon March 22 2008 - 22:04:47
cryptic but make sense.
SerbiaHackeron January 29 2012 - 22:42:29
This realy anoying me...j can't find password...and where to put:"from ALL the teachers"??
psyl0ckeon July 24 2016 - 20:17:31
Atm we shouldn't use plural for the file.
psyl0ckeon July 24 2016 - 20:27:30
And it isn't a file, it is a dictionary.
Post Comment


You must have completed the challenge Basic 1 and have 100 points or more, to be able to post.