Follow us on Twitter!
Hacking isn't just Computers & Exploits. It's a Philosophy. - Mr_Cheese
Saturday, April 19, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 23
Guests Online: 22
Members Online: 1

Registered Members: 82843
Newest Member: hx47
Latest Articles
View Thread

HellBound Hackers | Challenges | Realistic

Page 1 of 3 1 2 3 >
Author

Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 11-05-05 21:09
I have already found mail page (both php and html), and I also find login. I know I must set cookie information, but where can I found out which data goes to cookie.
Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 19-05-05 23:01
About search_members.php?search=1 in instructions it says it is vulnerable, what injection do I need to make??
Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 22-06-05 07:33
ok i got all the way to the search_members?search=1 i messed around with it and cant get an sql error so that must mean that its is something else i tried xss to view cookies/dont ask why/ but nothing do you guy have any direction you can point me in or any help


Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 04-07-05 21:44
Has anybody complete this mission throught inject search_members.php?search=1??

I know it can be bypassed, and compleated with little guessing, but with getting admin pass...
Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 23-07-05 20:24
is the injection added to the "all.php?id=download" bit
Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 05-08-05 18:41
Can anyone give me a hint? I've tried exploiting all the pages I could find (those include the ones mentioned above).


Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 05-08-05 19:51
Well, did you find the admin login page?


Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 05-08-05 20:23
I thought I was supposed to find that by exploiting the pages?!
Anyhow, still didn't find it.


Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 05-08-05 21:32
Nope, just look in the source of the main page. You'll see it.


Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 06-08-05 18:27
Thanks, I forgot to open my eyes.


Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 06-08-05 18:47
I've found the log page... So now I'm supposed to exploit a page to get admin pass? Already tried that part =\


Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 06-08-05 18:52
Oh, alright, i'm sure there are other ways of completing this challenge by getting the admin pass, but there is another way.

Go to members and look at any php file, then go to the admin login and type that same file after the admin directory. Do you see something? You can actually bypass the login directory and view files under the admin directory. Maybe you could guess the filename? Wink


Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 06-08-05 21:06
Found another file (r******). There are so many files and none of them is really helping. Sad


Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 14-08-05 13:43
lol, I found a page in the admin dir that leas me to hellbound... the only problem is that it says the pass is wrong Pfft

+ I think I skipped a part Grin

Any help/directions???


Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 19-08-05 12:34
I have the same thing... We've come this 'far', please help.


Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 15-09-05 00:34
Stuck at this one to, seems like i have all the pages.

when i try some filenames i get this when i'm on 1 specific page:

Code
Realistic Mission 4    
Invalid Password
Please enter the correct Password




Do you really have to gues the filename?




Edited by on 15-09-05 00:35
Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 18-09-05 17:55
Okay I've got to the logs clearing area but i dont knnow what it means by password!


Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 18-09-05 18:05
if you do delete the records you'll get the password to clear the logs.

so first delete the records.


Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 24-09-05 19:45
Ive found admin login and normal login, dont understand nights shadows tip on going to members and looking at a php file though, where is this directory? Any other tips would by appreciated.
cheers
Author

RE: Realistic 4


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 10-10-05 17:28
did you try php injection?
Page 1 of 3 1 2 3 >