Follow us on Twitter!
Society leans ever heavily on computers, if you have the power to take out computers you can take out society. - cubeman372
Saturday, April 19, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 20
Guests Online: 18
Members Online: 2

Registered Members: 82838
Newest Member: w1zarrd
Latest Articles
View Thread

HellBound Hackers | Challenges | Basic

Author

B*A*S*I*C*9 PLEASE HELP


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 01-02-06 16:15
What i have to do? I'm confuse! i've read a lot of articles about %00 but i don't understand how to use it in this mission! Plese give me some hints!
Author

RE: B*A*S*I*C*9 PLEASE HELP


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 01-02-06 19:23
First, find the directory you're searching (use common sense or the source code). Then find a place where there is an SQL injection vulnerability. From there, you have to use the Poison Null Byte somehow, which I haven't figured out yet. These hints are not spoilers; they can easily be found in the forums and have been repeated many times.


Author

RE: B*A*S*I*C*9 PLEASE HELP


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 02-02-06 13:19
SlimTim10 wrote:
First, find the directory you're searching (use common sense or the source code). Then find a place where there is an SQL injection vulnerability. From there, you have to use the Poison Null Byte somehow, which I haven't figured out yet. These hints are not spoilers; they can easily be found in the forums and have been repeated many times.


Thank you SlimTim10. I've found the directory. My question is : why the search.php find only 2 files of this directory? For example it can't find error_log page and search1.php!! Is the wrong directory that i've found?
Also i've inject a sql in login.php that show me a password and a new form to login whit her(this is the same sql injection used for basic 8 and the password is the same!). This from redirect me to a 41.php page that no exist.
I don't understand who is the page to apply the poison Null Byte attack.
Thanks for the reply but it can't help me however.
Author

RE: Basic 9 Tutorial


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 02-02-06 14:11
You have to know about html, php, sql injecting and poison null byte attack.
1) look at the source and find the directory where the form perform the searches; The initial message tell you clearly what is the name of the dir you need. However you can look at the source of the page or google it to find the dir.
2) Ever look all files and all sources. Find a page that is vulnerable to sql injection attack. Try it injecting a sql how y've done in basic8. The page display a password and a form to put her. Once you find that stop and turn to the start page. Else if you put the displayed password in this form you're redirected to a non existent page(in the wrong track).Ok? If you don't have time to spend once you have foud the sql injection vulnerable page turn to the start page.Let's say that is name is larika.php.
3) You have now to apply the Poison Null Byte attack to the larika.php page
from the start page. How the null byte work? What is it? Read about null byte and you'll easly understand how to use it.
Now begins the 2nd part of mission.
4) If all is right you are redirected to a page that tell you in clear and in the source the username and the password to beat the mission.
5) Turn in the start page and login with this information.

Thanks everybody that put helps,comments and hints in this forum!!
Author

RE: B*A*S*I*C*9 PLEASE HELP


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 03-02-06 16:39
I still don't get how to use the PNB. Do you inject it or what?


Author

RE: B*A*S*I*C*9 PLEASE HELP


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 09-02-06 10:51
this might sound silly but ... what page do you mean by start page.
the first page of hbh
http://hellboundh. . .
or the first page of the mission
http://hellboundh. . .ges/basic9

edit: never mind i found out about it
read the last line of the tuto





Edited by on 09-02-06 10:58
Author

RE: B*A*S*I*C*9 PLEASE HELP


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 11-03-06 22:45
i put in the query, like the same as challenge 8, and it directs me to a 41.php page that dosent exist!!!


Author

RE: B*A*S*I*C*9 PLEASE HELP

SySTeM
Member

Your avatar

Posts: 1524
Location: England, UK
Joined: 27.07.05
Rank:
HBH Guru
Posted on 11-03-06 22:57
aenman123 wrote:
i put in the query, like the same as challenge 8, and it directs me to a 41.php page that dosent exist!!!


THAT'S BECAUSE YOU DON'T INJECT ANYTHING!!!!!!!!!!!!!!!!!!!!!!!!!


img138.imageshack.us/img138/6527/sig2ak1.jpg
www.hellboundhackers.org/sig/r/2783.png

http://www.elites0ft.com/
Author

RE: B*A*S*I*C*9 PLEASE HELP


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 11-03-06 22:59
i did the same injection as in challenge 8, it worked and gave me the same password, and then redirected me to a nonexisted page


Author

RE: B*A*S*I*C*9 PLEASE HELP

SySTeM
Member

Your avatar

Posts: 1524
Location: England, UK
Joined: 27.07.05
Rank:
HBH Guru
Posted on 11-03-06 23:01
aenman123 wrote:
i did the same injection as in challenge 8, it worked and gave me the same password, and then redirected me to a nonexisted page


Did you not read my last post, YOU DON'T INJECT ANYTHING FOR FUCK SAKE!


img138.imageshack.us/img138/6527/sig2ak1.jpg
www.hellboundhackers.org/sig/r/2783.png

http://www.elites0ft.com/
Author

RE: B*A*S*I*C*9 PLEASE HELP


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 11-03-06 23:02
WHAT THE FUCK DO I DO THEN? I GOT TO THE PASSWORD SCREEN AND I KNO THAT THE NULL BYTE IS ADDING \0 ON THE THE END OF THE PHP FILE, AND I GET A SHIT LOAD OF ERRORS! WHAT DO I DO THEN?


Author

RE: B*A*S*I*C*9 PLEASE HELP

SySTeM
Member

Your avatar

Posts: 1524
Location: England, UK
Joined: 27.07.05
Rank:
HBH Guru
Posted on 11-03-06 23:10
Null Byte is %00 not \0 that's just what it parsers as I think


img138.imageshack.us/img138/6527/sig2ak1.jpg
www.hellboundhackers.org/sig/r/2783.png

http://www.elites0ft.com/
Author

RE: B*A*S*I*C*9 PLEASE HELP


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 11-03-06 23:18
WELL I ONLY GET ERRORS IF I DO INDEX.PHP\0 NOT INDEX.PHP%00


Author

RE: B*A*S*I*C*9 PLEASE HELP

SySTeM
Member

Your avatar

Posts: 1524
Location: England, UK
Joined: 27.07.05
Rank:
HBH Guru
Posted on 11-03-06 23:23
You can stop with the caps, maybe try not doing index.php as there isn't an index.php in /files/


img138.imageshack.us/img138/6527/sig2ak1.jpg
www.hellboundhackers.org/sig/r/2783.png

http://www.elites0ft.com/
Author

RE: B*A*S*I*C*9 PLEASE HELP


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 11-03-06 23:24
i didnt mean oto use the caps, and i tried every file in the files/ directory with that and it says it can find /../../../something


Author

RE: B*A*S*I*C*9 PLEASE HELP

SySTeM
Member

Your avatar

Posts: 1524
Location: England, UK
Joined: 27.07.05
Rank:
HBH Guru
Posted on 11-03-06 23:32
PM me with what you're trying


img138.imageshack.us/img138/6527/sig2ak1.jpg
www.hellboundhackers.org/sig/r/2783.png

http://www.elites0ft.com/