Please ask questions ONLY in this topic.

[Damascus2k8]

Erm, I'm stuck at the start. I've found an admin login page but that's about it.
I know the directory that pages are stored in from typing in a dud page, but I have absolutely no idea how to do Perl Piping or whatever it's called . I've tried googling it but I think the topics that I get may not actually be relevant to pipes in this sense.
Help please

Ok for the perl piping part, a pipe is simply just a '|' character. And i would strongly suggest looking up a good perl/cgi tutorial (remember google is your friend) and learning the language, as there will be other times when you will be required to write a perl program.

As for the mission itself, remember this is a web hosting site, so maybe one of their sites is vulnerable?

Also, (sorry if this seems painful to read) but you are going to have to learn MySQL, or maybe just SQL Injection itself but you still need to know the commands to do it right?

From there, your gained knowledge and your 'hacker-instinct' should guide you to the finish line.

Hope that helps, and good luck!

[jmillican]

Ok I've got lots of questions but I'll try and work most out myself.
Just a hint... how do I find the hosted sites?

[djpitagora]

Ok I've got lots of questions but I'll try and work most out myself.
Just a hint... how do I find the hosted sites?

in the case of this mission you'd have to know the folder the sites are hosted in. Now that is normally secret so a vulnerable perl script might help you...

[jmillican]

Having tried appending various combinations of UNIX and perl commands etc to the urls of both perl scripts, I'm basically completely and utterly confused about what to do. I've only found the two scripts (and the webmail login.php) and can see where they may be vulnerable, but can't really exploit it.
Can someone PM me please with a bit more help

[djpitagora]

Having tried appending various combinations of UNIX and perl commands etc to the urls of both perl scripts, I'm basically completely and utterly confused about what to do. I've only found the two scripts (and the webmail login.php) and can see where they may be vulnerable, but can't really exploit it.
Can someone PM me please with a bit more help

research a bit on how to pipe some commands to a perl script. You can find some interesting materials online: http://www.owasp.org/index.php/Testing_ ... _Injection

[SuperScience]

I've got to the end of the mission and I was redirected to a levelup script. However, instead of showing the mission as completed in my profile the level up php file just says "Begone vile fiend." I have see others report the same error message upon completing this mission; is there a bug in the script or is there more of the mission to complete?

[SuperScience]

Nevermind, I solved this by changing my browser's user-agent back to its default. I had changed it and forgot to change it back. My User-Agent had SSI code in it...that explains the nature of the error message!

[bxrbaseball]

I am having a little trouble with the perl injection part. To be honest I can't tell if the command is working or not nor do I have a clue what command I should use. I even tried a simple print command to see if that would output to the page but i either get a page cannot m{[\0.<>\/&\s]} error which I googled and can't find a match or it brings up the features page. I am not able to make any sense of this madness. Thanks in advance to who ever can help me if you think I need help.

[fabulous]

i haven't been able to pass this mission and i don't know why. i'm stuck at the user agent part. from the article i read i'm suppose to change it if i understood correctly but for some reason i still can't access the mod directory

[pitagora]

i haven't been able to pass this mission and i don't know why. i'm stuck at the user agent part. from the article i read i'm suppose to change it if i understood correctly but for some reason i still can't access the mod directory

you are supposed to change it and steal a valid session id through XSS. And no...it's not going to be a mod account Meaning that after to manage to login you will still have exploit a bug to elevate your powers to mod.