Natas · OverTheWire

Natas Level 7 → Level 8

Level 7

Username : natas7
Password : 7z3hEENjQtflzgnT29q7wAvMNfZdh0i9
URL : http://natas7.natas.labs.overthewire.org

Solution

To solve this level, we first log into the natas7 application using the credentials provided above.

7-10-2017 3-56-13 PM.png

We can see that the application has a couple of links to the Home page and the about page. The application also provides a hint in a comment which reads ‘ hint: password for webuser natas8 is in /etc/natas_webpass/natas8 ‘. Therefore, if we can somehow navigate to this page, we might be able to read the password.

By clicking around on the application, we can see that the application submits the page to load by using a get parameter ‘ page ‘. When we click on home, the application takes us to ‘ http://natas7.natas.labs.overthewire.org/index.php?page=home ‘ and similarly we are taken to ‘ http://natas7.natas.labs.overthewire.org/index.php?page=about ‘ for the about page.

This application behavior gives us an idea that if we change the input for the get variable, we might be able to open a different page that the application owner probably did not intend for us to be able to. After changing the page variable to the destination provided in the hint ‘ /etc/natas_webpass/natas8 ‘, we can see the content of that page which is the password for the next level.

7-10-2017 3-57-32 PM.png

Level 8

Username : natas8
Password : DBfUBfqQG69KvJvJ1iAbMoIpwSNQ9bWe
URL : http://natas8.natas.labs.overthewire.org

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s