Natas7
Website URL: http://overthewire.org/wargames/natas/natas7.html
According to the data on the OverTheWire webpage.
Username: natas7
URL: http://natas7.natas.labs.overthewire.org
Let’s log into the URL for Natas6
Let’s view the source code. This time from the link that’s there on the page.
Great! So, if a POST request sent to the page with a parameter named ‘secret’ set, the code compares the value sent with a secret. In case of a match, we get the password.
One more thing to note here is that the secret is stored in a file in the path “includes/secret.inc”. Let’s go to that path.
Hmm, a blacnk page. Let’s have a look at the source.
Now we got the secret, let’s send it to the server.
Done!