What is it? @.@

Here is the place where I record some tactics about wargame, systems, and other security issues.


Hack This Site! - Realistic 3

Peace Poetry: HACKED
A little girl made a website to post poetry related to peace and understanding. American fascists have hacked this website replacing it with Hitler-esque propaganda. Can you repair the website? 

Realistic 3
From: PeacePoetry 

Message: I run this website where people can read and submit peace-related poetry. I am doing this out of good will towards others, and I don't see why I would be making enemies out of this, but some real ass hole hacked my website posting a bunch of ignorant aggressive propaganda on the front page. And I made that website a while ago, and I no longer have access to it. Do you think you can hack in and change it back? Please? Oh, and bonus points if you message me the name of the bastard who did this!
My website can be found here.
  1. View page source code
  2. In the bottom of the page, you'll find the hint:
    < !--Note to the webmaster This website has been hacked, but not totally destroyed. The old website is still up. I simply copied the old index.html file to oldindex.html and remade this one. Sorry about the inconvenience.-->
  3. Browse the original website to discover the pages containing vulnerabilities.
    Visit: hxxp://www.hackthissite.org/missions/realistic/3/oldindex.html
  4. There's a page you can SUBMIT poems and store it in the website.
    Try: hxxp://www.hackthissite.org/missions/realistic/3/submitpoems.php
  5. If you read carefully, there's a hint for you.
    Use this form to submit a poem to the website. You do not have to be the author, but if you use someone else's poetry, please give credit where credit is due. Thanks!

    Note: Poems will be stored online immediately but will not be listed on the main poetry page until it has a chance to be looked at.
  6. We guess there exists a directory to store these upload poems.
  7. Maybe we could use this upload form to restore the home page, just like below.
    Name of poem: ../index.html
    Poem: the original homepage source code
    add poem
  8. Congratulations, you have successfully completed Realistic 3!