Natas24
Website URL: http://overthewire.org/wargames/natas/natas24.html
According to the data on the OverTheWire webpage.
Username: natas24
URL: http://natas24.natas.labs.overthewire.orgLet’s log into the URL for Natas23
Looking at the source:
That’s a pretty straightforward source! All we need to do is send a password containing the string “iloveyou” and framing it such that the comparison with 10 returns True.
Now, PHP has a property that on comparison with numerals, the string will evaluate as numerals. If the string has a ‘e’ in it, it will be evaluated as a float variable, otherwise an int. Since there is necessarily an ‘e’ in our string (because of the “iloveyou”), our passwd will be evaluated as a float. Another interesting thing is that, while this comparison, the value of the string being evaluated as a numeral will be from the initial part of the string. If there is no numeral in the initial part, the evaluation will return as 0.
So, our passwd becomes: <some number>iloveyou. Let’s try that out!
Done!
Password for next level: OsRmXFguozKpTZZ5X14zNO43379LZveg