Month: September 2018

  • OVERTHEWIRE NATAS SERIES: 17 – 18 LEVEL Walkthrough

    OVERTHEWIRE NATAS SERIES: 17 – 18 LEVEL Walkthrough

    OVERTHEWIRE NATAS level 17-18 is about blind sql injection. To make the level more complicated, the output hasn’t been displayed. Let’s dive in the level: If you look at the code below. It is a simple code which takes the username and check for its existence in the table users. but No output display! This…

  • OVERTHEWIRE NATAS SERIES: 16 – 17 LEVEL Walkthrough

    OVERTHEWIRE NATAS SERIES: 16 – 17 LEVEL Walkthrough

    The walkthrough for the last level is available on this link: http://www.anonhack.in/2018/09/overthewire-natas-series-15-16-level-walkthrough/ This level is little bit similar to the last level. Here we have to perform a command injection. Let’s have a look at the source code of this level: See the highlighted text in the code above. $key variable is the one carrying our…

  • OVERTHEWIRE NATAS SERIES: 15 – 16 LEVEL Walkthrough

    OVERTHEWIRE NATAS SERIES: 15 – 16 LEVEL Walkthrough

    If you want to see the level 14- 15, follow this link: http://www.anonhack.in/2018/09/overthewire-natas-series-14-15-levels/ Level 15-16 is also based on SQL injection but here we have to work on boolean based SQL injection technique. Let me how you how: This is what the screen looks like: I put “natas16” as the user here and it turns out…

  • OVERTHEWIRE NATAS SERIES: 14 – 15 LEVELS

    OVERTHEWIRE NATAS SERIES: 14 – 15 LEVELS

    You can find the level before this on this http://www.anonhack.in/2018/09/overthewire-natas-series-level-12-14/ The 14th level of overthewire natas is a typical SQL injection based level. In this level, we have to use SQL injection tactics in order to get the password for the 15th level. Let’s dive in: This screen will appear:  2. If you look in the…

  • OVERTHEWIRE NATAS SERIES: LEVEL 12 – 14

    OVERTHEWIRE NATAS SERIES: LEVEL 12 – 14

    This write-up is the walkthrough for OVERTHEWIRE NATAS level 12 to level 14. Both these levels contain upload the image kind of challenges where we have to upload a shell bypassing the code. LEVEL 12 – 13: The above image is the screen for overthewore natas challenge 12, When you click on “View sourcecode”, this…