Follow us on Twitter!
Don't judge the unknown - Grindordie
Sunday, April 20, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 30
Guests Online: 27
Members Online: 3

Registered Members: 82848
Newest Member: aIjundi
Latest Articles

Realistic 5

Arrow Image An in depth tutorial for those who are pulling their hair out.



This is my first article, so I hope it\'s decent and helpful. Let me know if I\'m giving away too much. I don\'t want to spoil the mission for anyone.

Details:

Hey, Grindordie told me that you where good at hacking so I need you to do me a favor. My boss BillSmith is very selfish and he is downloading illegal MP3s from Kazaa. So I need you to report him. To do that you need to show this guy S. Anderson (sanderson) that the real admin BillSmith is downloading illegal mp3 music from kazaa so in order to do that you need to get BillSmith\'s password. (Note: you will not be able to log in as BillSmith) After you need to check your email and replace your cookies with Bill Smith’s one and read his email, I believe he just made web folders. You must see where the BillSmith’s folder is and change his permission to \\“Read All\\” but in numbers like 775. After you did that you need to cover your logs by accessing the .htaccess file and replacing your IP with the old one. Then you need to view the main directory of eBussNet and see what is the name to report a user that has being downloading illegal music. By the way my username is Jdoe and my password is trebuchet Good Luck,
John Doe

Now, as I was reading articles and forum posts, I realized that there were a couple of steps that everyone said had to be done, but I was able to do this mission a different way. First, I\'ll list the objectives, then the things that you actually can skip.

Ok, so what do we have to do?

Report BillSmith\'s illegal downloading of mp3\'s to Sanderson, an admin.

Objectives:
1. Log in as Jdoe with the pass trebuchet
2. Somehow view the email
3. Change BillSmith\'s folder to \"read all\"
4. Covering the tracks by replacing your IP with the old one.
5. Send the report to Sanderson

Now, I will explain each step in more detail further down, but let me first tell you what you can omit from this mission, despite whatever you read in the forums.

-Cookie editing/Javascript injections
-getting BillSmith\'s password

Okay, now to the core of this article.

Objective 1:
Well, let me just say that if you can\'t get past this one, you may want to consider a career in fast food.

Objective 2:
Ok, so now we\'re logged in as Jdoe, and we want to view BillSmith\'s email because it\'s going to tell us where the new folder or directory is that will allow us to complete the other objectives. So, let\'s click on \'check email\'. But wait, we can\'t do a damn thing in here! Well, when stuck, view the source. Ok, so now we see that this email page is actually a frameset of two pages, 1.php and 2.php. Why don\'t you view each page\'s source and see if there\'s something that can push you in the right DIRection....maybe something like jd**_*****. Oh, well look at that, we made it to a directory. And look carefully at the directory\'s name....maybe there\'s another name we can use instead of jd** to view a different directory...
Wow, that was convinient, a bit too convinient, but let\'s continue. Alright, now we see some of the same files that were in the jd** directory, so what\'s different? Well, what are we wanting to do? READ BillSmith\'s email. Hmm, is there a file in this directory that might allow us to do that? *Hint, if you don\'t get me, just open every file, lol* Ok, now we have the email. Make sure to read it carefully, because it gives you the name of the new folder that you need to complete the rest of the mission. *Important!: You must view the email before you can access the new directory, because I think it sets a cookie for you. If you get this far, then quit and pick up another day, if you try to access the folder that was mentioned in the email, you\'ll get an error message. To avoid this, view the email again.*

Objective 3:
Ok, so now we have the name of the new folder, so let\'s go find it. Once you get it, we are taken to a page that has tables with a list of usernames in it. Well, since we know what we have to do (change BillSmith\'s folder to \"read all\"), click on BillSmith. Now here, you have to provide the right number to set his permission to read all. *Hint, if you are stuck, refer to the mission details. He said it was something like 775...so just try from there plus or minus. You\'ll get it sooner than you think. So, we have now made BillSmith\'s folder \"read all\".

Objective 4:
Now, we need to cover our tracks. Well, we can do this with the .lastaccess page. So, click it. Now we see a textbox with your real ip in it, and we want to replace that with an old ip. Maybe there\'s a log file that has an old ip in it *When stuck...view source.* Ok, so now we have the list of ip\'s. Hmm, can you guess which one you should use? If not, sing this song: \"Which one of these things, is not like the other?\"...lol. Alright, now we have changed our ip. Time to report this mp3 stealer.

Objective 5:
This is the hardest part, or at least was for me. You have to find the page that allows you to report someones activity, so let\'s begin. Now, if you didn\'t already, take note of the source in the directory that you should still be in. There might be something usefull there that can tell you where the page you\'re looking for is. Got it? Now, this is where my hair pulling/massive headaches came, so I\'ll try to help out as much as possible without ruining it for you. Look at what is at the top of the table in this directory, \"Please use the a*****s\". Now, look at your clue and see if it reminds you of anything.. *hint: analyze this carefully: \"?action\"=\"members\". Maybe we can take our clue and make it allow us to view the directory of Real 5...So let\'s do that. Now, you\'re probably in the same directory still (the one where you completed obj 3 and 4).If not, go back because this will help you. So, with our clue, let\'s try an execute some simple actions. If you\'re stumped, think about what you want to do...you want to view the complete directory of Realistic 5, and we are in one directory down. Maybe there\'s a command that will allow us to change the directory to one level up? *Helps if you\'ve beaten the rooting challenge* Hey, we got it! Now we can see the name of the page to report someone\'s activity, so let\'s go to it. Now, after you input the information, click the submit button. Did you get this?:

We could not send you report due to the following reasons

1. The member does not exist or is not an administartor

When in doubt, view the source. Oh, I guess there\'s a value that tells where (or to whom) the form should be sent. Well, since we\'re reporting BillSmith, it\'s stupid to send him the report of himself, so maybe there\'s another guy we can think of to send it to. *Hint: maybe we can save this form and make changes to the source so it does what we want. Oh, and be mindful of capitalization.*
Just one last tip for filling out this form: the company that BillSmith is stealing from is Kazaa (as noted in the details), and he\'s downloading mp3\'s. Also, the description is not necessary.

If you have entered in everything correctly, you will be given a link. Click on it, and 50 points. If you get a message saying something like: you need to complete every part\" (or whatever), redo the mission, then send it again.

My thanks goes out to everyone who has helped me complete this mission. I hope this article helped you out. If not, don\'t give up.

Comments

Placeboon November 10 2006 - 19:39:17
If this article has helped you any, please take a moment to rate it. I would like to complete Other 7. Grin
Flaming_figureson November 10 2006 - 23:33:29
Thanks placebo. Article really helped. I looked through it quick and smacked myself in the face (or I would if I didn't have surgery and I would have to go to the hospital) lol. I got caught with the message "please u-" well, u know. Didn't give too much, but points you in the right direction. 5.
dontspitonmeon November 11 2006 - 02:27:17
very nice Grin, im gonna rate it so u can get ur other chall done Smile
Placeboon November 11 2006 - 06:19:27
lol, thx dsom
a-hackon November 11 2006 - 06:19:46
Great article, you should write more tutorials for the real challenges
dontspitonmeon November 11 2006 - 16:37:33
no prob placebo, nice article
Placeboon November 13 2006 - 21:53:58
Other 7 complete. Grin
evilTonmoyon November 15 2006 - 19:42:55
hey thanks a ton man, Grin i was pullling my hairs out just like you for a whole week on this & now i'm done with it. all credit to you. this article is awesome! Wink
repressedcrabon November 16 2006 - 02:45:17
:ninja::ninja::ninja::ninja: Cool dude this is a great artical!!!!
3l_f3n1xon December 02 2006 - 02:46:50
Thank you man. An Awesome! article. It help me a lot. I was pulling my hair off at the last part lol Grin. Great hints without spoilers. Thank you again Grin
end3ron January 16 2007 - 21:31:33
Thanks alot!
Thiseason October 21 2007 - 09:05:43
For my opinion, this must be used as a tutorial template!! A very well done Mr Placebo! One low importance remark: It is not needed to fill the fields in the "Person Reporting" mail. The only necessary is to correctly fill the hidden field "sendto". The very frustrating thing is that you have to play with (f-word here!) capitalizations..... So.... pay attention to the very first letter!!!!
Majeh1254on November 22 2007 - 03:48:19
i got to the j***_****** and tried to switch it to bill smith but when i try to i get a 404 error so im kinda confused
loxaXcrackeron December 25 2007 - 13:42:51
I rated awesome but the part with the permissions isn't explained well.
iantharanon May 19 2008 - 05:00:20
Amazing article, but when you get to the last part, thats when it starts to fall apart a little bit
Dunuinon February 20 2009 - 00:10:05
I tried the last part very long and it didnt work. The problem was, that the Company is not Kazaa, its the Company BillSmith works for.
F1L0s0F3R_gron March 12 2009 - 21:12:49
The last comment is true...
gchain hackeron June 22 2009 - 06:18:25
Hint, if you are stuck, refer to the mission details. He said it was something like 775 I COULDN't get past this -.- i did all sorts of calculations like relating numbers to alphabet, multiplying, adding or minus numbers.. for like 1 hour i was pulling my hairs off, and then i realized that after all this it only could be an obvious asnwer omfg so easy its hard.
yutsion March 21 2010 - 20:30:03
[url]http://www.hellboundhackers.org/challenges/real5/email/billsmith_files returns[/url] 404 error
goluhaqueon March 31 2010 - 17:13:27
try changing the caps on the first letters of the name
Shazrahon April 02 2010 - 13:23:10
to: yutsi Capslock.... look at which letters that should be capital Pfft
Shazrahon April 02 2010 - 13:42:11
to: yutsi Capslock.... look at which letters that should be capital Pfft
gruenfeld777on April 23 2010 - 11:18:24
last part was the challenging bit. it's a good thing there are comments on here! heheheh re permissions, there's an error there that will tell you which just look for it
icecgroundon May 20 2010 - 13:12:08
I can't get the "view real5 complete directory" to work... Any hint? Or anyone I can PM?
SerbiaHackeron February 07 2012 - 19:41:49
J vote this with Awesome but you fucked the end(5 part)...this is probably the best article that j read but as j say you fucked at the end
SerbiaHackeron February 08 2012 - 20:53:17
Realy need help with re___t.php j get this message:"We could not send you report due to the following reasons The member does not exist or is not an administrator" And J check source but J don't get nothing, no value, nothing...pls help with this.
devilhunteron July 26 2012 - 07:40:09
i can't find the list of all files in real5..!! i used ../ in *** but it leads to welcome.php... no list or structure... how to get to reporting page??
dami3non August 03 2012 - 17:28:58
Great article but like you said part 5 really makes your scratch your head. I just dont get it. I have found the hidden value behind use actions. So thought to modify the ? section of the hint you gave. This did not work I also tried ../ to navigate through but all it seems to do is either give me a blank main page, a blank side page or brings me back to welcome.php. I found r****.php but all it says is We could not send you report due to the following reasons 1. The member does not exist or is not an administartor Any help?
Akulaon April 24 2013 - 22:34:34
Anyone who still struggels on the last part? You should find out which file is responsible for creating the table page used in part 3 and 4. Then apply action and the hint from source comment. For the last report form. If member does not exist or is not an admin, try sending to the correct username by changing the post parameter. The challenge says to send the report to S. Anderson.
GsC_RuL3Zon July 19 2013 - 22:50:39
I'm stuck at reporting, i changed the source with sanderson, Sanderson, SAnderson, sanderson@ebussnet.com but i get this message every time " We could not send you report due to the following reasons 1. The member does not exist or is not an administartor "
Post Comment

Sorry.

You must have completed the challenge Basic 1 and have 100 points or more, to be able to post.