hackertest.net level 1 :: Cover up basics
by Arxleol on Wednesday 07.01.2009, under hackertest.net, tutorial
First of all I will show you how to get the solution however the point here is to learn something and not to spend time googling for the right answer.
In fact you will see that the first few missions are fairly simple and if you are familiar with basics of internet then you will certainly pass them easily.
So let’s begin first of all I would suggest you to start using Firefox browser since there are many plug ins that will really help you in the later stages that is level. You may download firefox for free.
Now if you have firefox and you have opened http://www.hackertest.net/ in one of the tabs then we may begin.
OK first thing to do is to press CTRL + U this will open you source window of the page you were currently viewing. Now let’s search for password since it is just above text box in which we have to enter password in fact. After caareful searching you will find text box, however there is nothing interesting in the textbox but if you look out for the form tag then you may notice that in the action is call to javascript function it looks like this: action=“javascript:check()” this means that after you click on the submit button it will start function check.
So we shell search for the check function in the source code. I forgot to mention that it is easiest to access firefox search window if you would use keyboard shortcut CTRL + F.
{ var a="null"; function check() { if (document.a.c.value == a) { document.location.href="http://www.hackertest.net/"+document.a.c.value+".htm"; } else { alert ("Try again"); } } }
As you may notice this function probably do some logic and give us password or not. It is up to us to analyse this and found out the way to pass protection.
To begin with let’s explain basics of javascript var represents variable and therefore in the second row we in fact declare a variable with value null. Now we see our function declaration and in the first statement there is written document.a.c.value this means that on our page that is document we have html tag with name a and this component has child named c. If you would search document then you will find that form from the beginning is named a and de facto textbox is named c.
And since comparisson is done between values of javascript variable a and value in textbox this means that we simply take a peak at value of a and it should be correct solution.
If you would try now to enter in the textbox value of a then you will see that it is in fact correct one.
So the password is: null for all those impatiant.
Thursday 18.06.2009 on 11:42
my wish is very big.i wanna be hacker,and learn something about you”hacker”…i wanna build wall on the net,for better tomorrow…:)….:)….:)
Thursday 18.06.2009 on 12:18
well, you have to make it way of living
Thursday 03.12.2009 on 00:11
[...] by Arxleol on Wednesday 07.01.2009, under hackertest.net http://www.hackertest.net/ level1 [...]