Follow us on Twitter!
Don't judge the unknown - Grindordie
Wednesday, April 16, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 83
Guests Online: 82
Members Online: 1

Registered Members: 82803
Newest Member: Tired_of_being_ignorant
Latest Articles

Real 15 Noob 2 Noob

Arrow Image From A Noob To Another



Terrorists!
Wolfmankurd has sent you a link to a terrorist site he just hacked! Go take a look!

You MUST have popups enabled to be able to complete this challenge. Please enable popups past this point.
Difficulty: Hard


Objectives :-
*First contact with Wolfie
*Discover plans
*Secret Mission 1
*Logged into shell
*Deleted content
*Secret Mission 2



Oki doki the first objective on the way…do the obvious thing (web basic 1 style)

Second objective discover "plans" ... ooppss


For the third objective view the message that was written when you completed objective 1, said something about logging in as the admin think for a while what would "changes" if you were the admin. Got it!!! Alright then, view that "file".

When you would view the file what you would be looking at is a python code, don't worry no knowledge of python is required to crack this code..just look at the code as if it was JavaScript (LOL.. Sorry for the comparison "Python God")
Think logically, analyze the code (don't over think)

Since i forgot about the hash you may do so.

The link you got from the code would have a link to another place, click on it...

You'll see a message:-
Greetings, I have removed the admin login because of security reasons. However the shell to this server is still intact.

Naah this isn’t the secret mission but we are close enough.

Click on the link... oopsi password!!! ... (JavaScript basics again)

You'll get to a location which reads..
Soviet Remote command execution device
Choose the third option from the drop-down menu and press send command.
Password asked again???...Enter what you got previously

Secret mission 1 completed


hhhmm.. Some error message appeared in red. Something about the shell.php
Well try it out.

Logging time out!!!

There are many honey pots in this challenge...

This isn’t the right shell and you have to spoof your way too..

The shell path and the referrer are same...
Hint: use a rFERERsPOOFERleet
Fourth objective completed

Once in the shell our next objective is to delete the contents
Caution: this is an emulator so every command would not give you the desired result

Do what the objective says...
Type the command to attain privileges to delete a file..
Type the command to display the files

If you don't know what file to delete, make a note that html files should not be public.

Type the command to modIFY the file
Remove the file
Fifth objective complete

Caution: People using web developer ff please check that the META redirects are not disabled because
after each command the URL will change, except after the ls command.[Happened with me]

After the remove command, do a ls to view the files and enter the command to run the report script
report****.*h
After the script runs, it would redirect to give you the points.

The message would read "You have not completed all the objectives go back... "
Write down the link.

Well we haven't completed the sixth objective, for that go to the root of the real15 challenge
there you would find a very IMportant information...that’s it... all done.

Write back the URL we noted down to add your points...

Comments

Priya_Samuelon February 16 2007 - 09:27:29
just the hint i needed for the referrer
UnknownFromHellon February 16 2007 - 18:30:41
@SsAgEnT Thanx For The Appreciation.....
I-O-W-Aon February 16 2007 - 20:03:42
i cant find the 3rd objective lol aside from tht its helped me loads so far nice artical
UnknownFromHellon February 16 2007 - 20:06:11
@I-O-W-A Secret mission 1 completed 3rd Objective
Larikaon February 19 2007 - 17:15:22
Thanks for that very helpfull article man!
UnknownFromHellon February 19 2007 - 18:07:46
@Larika Thanx For The Appreciation.....
richohealeyon February 19 2007 - 23:43:16
'twas a good article. Because I got a mention!!! YAY!!! but... it was a big ball of spoilers. at least they're reasonably well concealed. i'll rate it good.
UnknownFromHellon February 20 2007 - 11:47:45
@richohealey Sorry for the comparison "Python God", Thanx For The Appreciation.....
patchyon March 01 2007 - 23:20:11
Great Article helped a bunch!
UnknownFromHellon March 02 2007 - 08:02:02
@patchy Glad To Help You
kaksiion March 02 2007 - 13:13:28
Great article. I finally got it. Damn, it was hard challenge. I am glad it is over. :happy:
UnknownFromHellon March 16 2007 - 11:08:13
@kaksii Glad To Help YouGrin
TotcoSon April 01 2007 - 08:38:42
where is this script you talk about? report****.*h i "ls" in shell and cant find it.
TotcoSon April 04 2007 - 22:52:03
this was very good.
UnknownFromHellon April 05 2007 - 11:59:14
Thanx For The AppreciationGrin
Post Comment

Sorry.

You must have completed the challenge Basic 1 and have 100 points or more, to be able to post.