What is it? @.@

Here is the place where I record some tactics about wargame, systems, and other security issues.


Hack This Site! - Basic 3


Some intuition is needed to find the location of the hidden password file. Requirements: Basic HTML knowledge

Level 3

This time Network Security Sam remembered to upload the password file, but there were deeper problems than that.

  1. View page source code
  2. Find the hidden field in the HTML form
    <input type="hidden" name="file" value="password.php" />
  3. Access the php file directly by the URL of:
  4. There's a text on the page.
  5. Back to the level page and submit the password.
  6. Congratulations, you have successfully completed basic 3!