Realistic 3 - 'Peace Poetry' Guide

A little girl made a website to post poetry related to peace and understanding. American fascists have hacked this website replacing it with Hitler-esque propaganda. Can you repair the website?

Re: Realistic 3 - 'Peace Poetry' Guide

Post by limdis on Fri Mar 29, 2013 8:19 am
([msg=74808]see Re: Realistic 3 - 'Peace Poetry' Guide[/msg])

Sure PM me again. You sorta found a break in the last one you PM'd me about but I can help you out here.
"The quieter you become, the more you are able to hear..."
"Drink all the booze, hack all the things."
User avatar
limdis
Moderator
Moderator
 
Posts: 1435
Joined: Mon Jun 28, 2010 5:45 pm
Blog: View Blog (0)


Re: Realistic 3 - 'Peace Poetry' Guide

Post by Rockyfelle on Sat Jun 08, 2013 4:48 pm
([msg=76039]see Re: Realistic 3 - 'Peace Poetry' Guide[/msg])

I read all the comments and still cant figure it out -.-. im at a submit page
Rockyfelle
New User
New User
 
Posts: 3
Joined: Sat Jun 08, 2013 4:42 pm
Blog: View Blog (0)


Re: Realistic 3 - 'Peace Poetry' Guide

Post by fashizzlepop on Sat Jun 08, 2013 6:43 pm
([msg=76045]see Re: Realistic 3 - 'Peace Poetry' Guide[/msg])

Explain what you've tried in a non-spoiler way.
The glass is neither half-full nor half-empty; it's merely twice as big as it needs to be.
User avatar
fashizzlepop
Developer
Developer
 
Posts: 2303
Joined: Sat May 24, 2008 1:20 pm
Blog: View Blog (0)


Re: Realistic 3 - 'Peace Poetry' Guide

Post by dibyasundarit on Mon Jun 10, 2013 12:54 am
([msg=76057]see Re: Realistic 3 - 'Peace Poetry' Guide[/msg])

hey....... i am trying this again and again .... but can't find about the php vulnerability present.... so at leat tell me which page is vulnerable .... is it the poem posting page or the poem reading page.... :|
dibyasundarit
New User
New User
 
Posts: 3
Joined: Mon Jun 10, 2013 12:44 am
Blog: View Blog (0)


Re: Realistic 3 - 'Peace Poetry' Guide

Post by -Ninjex- on Mon Jun 10, 2013 11:48 am
([msg=76063]see Re: Realistic 3 - 'Peace Poetry' Guide[/msg])

dibyasundarit wrote:hey....... i am trying this again and again .... but can't find about the php vulnerability present.... so at leat tell me which page is vulnerable .... is it the poem posting page or the poem reading page.... :|


This is straight from the OP by Monica on this subject:

Required:

- Logical thinking (of course)
- Moderate HTML knowledge
- Basic PHP knowledge
- Directory Traversal


"Directory Traversal", I imagine you have not learned how this type of attack works yet.
I suggest you read up on it.
If you're not willing to learn, no one can help you. If you're determined to learn, no one can stop you.⠠⠵
The absence of evidence is not evidence of absence.
I can explain it for you, but I can't understand it for you.
^(-.^)>
User avatar
-Ninjex-
Addict
Addict
 
Posts: 1470
Joined: Sun Sep 02, 2012 8:02 pm
Blog: View Blog (0)


Re: Realistic 3 - 'Peace Poetry' Guide

Post by dibyasundarit on Tue Jun 11, 2013 11:12 pm
([msg=76080]see Re: Realistic 3 - 'Peace Poetry' Guide[/msg])

-Ninjex- wrote:
dibyasundarit wrote:hey....... i am trying this again and again .... but can't find about the php vulnerability present.... so at leat tell me which page is vulnerable .... is it the poem posting page or the poem reading page.... :|


This is straight from the OP by Monica on this subject:

Required:

- Logical thinking (of course)
- Moderate HTML knowledge
- Basic PHP knowledge
- Directory Traversal


"Directory Traversal", I imagine you have not learned how this type of attack works yet.
I suggest you read up on it.





thanks alot .... now i got what directory traversal do here.... so easy yet lost my 5 days in it
dibyasundarit
New User
New User
 
Posts: 3
Joined: Mon Jun 10, 2013 12:44 am
Blog: View Blog (0)


Re: Realistic 3 - 'Peace Poetry' Guide

Post by minescias on Sun Jun 30, 2013 4:17 pm
([msg=76290]see Re: Realistic 3 - 'Peace Poetry' Guide[/msg])

haha :D I could guess the name of the old index, with wrong extension :)
minescias
New User
New User
 
Posts: 1
Joined: Sun Jun 30, 2013 2:01 pm
Blog: View Blog (0)


Re: Realistic 3 - 'Peace Poetry' Guide

Post by John-Doe252 on Tue Jul 09, 2013 2:19 am
([msg=76389]see Re: Realistic 3 - 'Peace Poetry' Guide[/msg])

Hi!

I figured out how to solve this one. Though I didn't had a clue until I found this teehee from Raziels (thanks for that).

I noticed that I was able to put new files somewhere. But I couldn't think of a way to find the directory structure. I mean you can guess that there might be a subfolder if the new file index.html doesn't overwrite the old one but is there a more structured approach like <ls> or something?

Hope this is not too much of a spoiler!

Thanks Johnny

Removed the link, was kind of spoilerish --Shred
John-Doe252
New User
New User
 
Posts: 7
Joined: Tue Jul 09, 2013 12:35 am
Blog: View Blog (0)


Re: Realistic 3 - 'Peace Poetry' Guide

Post by Rockl13 on Thu Nov 14, 2013 11:45 am
([msg=78152]see Re: Realistic 3 - 'Peace Poetry' Guide[/msg])

well i've been doing this mission for a long time, and i'm unable to figure this out.

i think i know how the directory traversal attack works, i know the basics of html, but the things i'm not sure, maybe i'm but can't figure this thing out, is php, perhaps i have to do a little more research about this and i think i understand how this site works. I think i pretty much know how the directory tree is and i have crawled for every folder i know of.

maybe i'm just a noob, lol.
Rockl13
New User
New User
 
Posts: 9
Joined: Fri Jul 19, 2013 1:38 pm
Blog: View Blog (0)


Re: Realistic 3 - 'Peace Poetry' Guide

Post by michelk on Sat Jan 11, 2014 1:57 pm
([msg=78851]see Re: Realistic 3 - 'Peace Poetry' Guide[/msg])

No SSI, No Unix Command, just how to move among directories... and read the NOTES posted on the website. IMPORTANT: HTS will not give you any feedback if you're on the right direction as it won't accept half solutions. You need to get the exact file name to finish the mission.
michelk
New User
New User
 
Posts: 1
Joined: Sat Jan 11, 2014 1:54 pm
Blog: View Blog (0)


PreviousNext

Return to (Real 3) Peace Poetry: HACKED

Who is online

Users browsing this forum: No registered users and 0 guests