Follow us on Twitter!
Imagination is more valuable than knowledge - Albert Einstein
Monday, February 20, 2017
 Need Help?
Members Online
Total Online: 44
Guests Online: 44
Members Online: 0

Registered Members: 98649
Newest Member: acjj
Latest Articles

Basic Missions 3-7

Arrow Image Some Help for missions 3-7 in basic web hacking.

Basic 3
-basicly you need to have Mozilla firefox. Download it and also download the User Agent Switcher for Firfox. Then figure out how to use it by using the user it says is not valid.
Basic 4

-htpasswd.php is not found in basic 4.... put the htpasswd.php in the url at the end instead of index. Then try changing the number of the mission until you get the page.
Basic 5
-After looking around the source you see that * is a wild card(WD). The * replaces something you dont know. Which in this case is everything.
Basic email add:
Somebody @ Somwhere . Something
Replace the . with a : instead and you only need to fill in the bottom passwd box with the email.
Basic 6
-What you need to do:
...- chmod a file
...- delete the logs
...- delete another file
First you need to know the file you are try to chmod.... ***/logs.txt. This file will give you the link to another file (the one you need to delete).
Most unix cmds use a $ in front of them... for each box when you start out.
For more understanding search Unix Commands in GOOGLE.
Basic 7
-Looking in the source gets you a name and a passwd in binary. Go and use javascript like so....
javascript:alert(document.cookie="username={the binary}"). After that use 1=1-- in the passwd box. This should get you a good start.Then there are more steps to find out the correct passwd.


nights_shadowon May 31 2005 - 12:49:12
Were you tired of people asking help for these challenges because these were give-aways. Major spoilers to the levels.
wolfmankurdon May 31 2005 - 13:19:13
true, does ruin the fun
hack4uon May 31 2005 - 15:31:03
yeah but i did get tired Angry
thousandtooneon May 31 2005 - 23:35:12
Most unix cmds use a % in front of them... in this case replace it with $ for each box when you start out. For more understanding search Unix Commands in GOOGLE. NOT TRUE.
hack4uon August 27 2005 - 13:48:06
600 reads. That only shows how many ppl need help on such easy missions.
hack4uon October 05 2005 - 03:38:38
damm okay 980 reads whoo! Pfft
The Flameon January 24 2006 - 03:25:04
1523 actually lol
deb_xtreme1on February 08 2006 - 22:30:43
Hey hack4u nice job,but don't get the Basic 6 ....where is logs.txt need some help here......Thx
deb_xtreme1on February 09 2006 - 05:22:58
OK...OK I got the log.txt & other php file .....What is all+execute??? .....r-w-x|r-w-x|r-w-x.....Is this what it mean?
BluMooseon February 28 2006 - 21:54:19
And u said to use java on the last one, then gave the wrong command XD
HalfBladeon July 19 2006 - 18:43:27
I am also stuck on Basic 6, it is driving me MAD Angry Nice tutorial though
200108872on July 21 2006 - 00:01:43
i swear i hav the right commands for basic 6 but it says "invalid command" can someone help if i pm them my commands i have written?
guruzeeon August 25 2006 - 06:28:38
On basic 5 we really dont need to fill in the email right. Something like *@*:* for the usernamePfftassword and * in the email field also does work. So hypothetically, would it mean that we are searching the database for an username and password and then after we found that we are searching another table for an email?
RedCellon January 07 2007 - 13:00:00
stop putting up this freaking spoilers! Holy shit.
bobsyouruncleon May 01 2007 - 08:13:37
DarkenedEdgeon July 14 2007 - 02:54:40
No wonder you were banned...You kept spoiling the challenges.....Goodbye whoever you were =/ and don't come back if your just here to spoil everyone else's fun =/
Ice-Ton August 21 2007 - 11:28:11
what is the other php file,please PM me
Neoxh4ck3rxSkyon November 12 2007 - 03:24:56
basic 7 is still frustrating me wtf
SaMTHGon April 01 2008 - 17:48:37
Hey I thought it was a great tutorial...It did throw me of the track till is suddenly dawned on me...I was using all the possible javascript codes in alert but it supposed to be void correct injection for 7 is: javascript:void(document.cookie="username="(the binary for the user name)"Wink Then all you have to do is replace (the bianary of the username with the actuall binary of the username. Good Site: Otherwise for Basic 7 Really good...I didn't use 3,4,5 or 6.Smile
Abdellahon August 03 2011 - 18:48:33
I spent 2 days on 6, if someone needs help feel free to PM me Wink
XRahat2011on September 27 2012 - 19:55:05
Guys, in Basic 6, you\'re entering right but this challenge is sh*t & gay! e.g. if you want to enter \"wc xeeshan/rahat.txt\" then you will need to actually enter it like this \"$ wc xeeshan/rahat.txt\" & not like this! \"$ws xeeshan/rahat.txt\" You Got It? Good Smile ! :ninja:
Post Comment


You must have completed the challenge Basic 1 and have 100 points or more, to be able to post.