Please ask questions ONLY in this topic.

[limdis]

I went to americannaziparty.com though that seemed WAY too legit. Im a bit confused with that...

Ok that is an actual site. Use the link in the mission letter. It should take you to:
https://www.hackthissite.org/missions/realistic/2/

If you end up at http://www.americannaziparty.com/ you are in the wrong spot lol

[Dafuqisthisshit]

Oh come on, I have done this and still laughing because of my anger...
you are all giving hints away, like find the hidden cave, save the princess!
In addition to this half of you said, check out the main site. Do you even know that there is a button called home in index.html and I am searching for the damned authorization link like 6 hours. I would like to spend this 6 hours with studying more on injections. Come on guys, before trying to give a hint, dont confuse others! Just be clear...

[holycricket]

Was going to ask a question but then I got it . It took me two days I'm sad to say but only because I was over thinking it, it's like the easiest SQL injection you could possibly use. If you're having trouble go to this link, http://www.hackthissite.org/articles/read/23 , and look at the part on SQL injection, that's what helped me.

Hint: Don't try and use the URL. The username is basically given to you in the challenge description, so all you need is the password. But you're not going to get the password no matter what you try, so you want to trick the site into thinking you already know it with SQL injection (sorry if I've said too much, if I have, edit it).

Hope this helps, and sorry if any of this is inaccurate, I'm still a newbie.

[mookalovesgloop]

figured this one out earlier so i just wanted to offer a few words of encouragement...
if you've google searched sql injection there is a 99.9999999% chance that you have ALREADY GOT THE ANSWER watch your SPACING and SPELLING even a TINY mistake can ruin your code. check, double and triple check, write it down if you have to...the mission is not designed to be overly difficult
peace
mooka

[ryryhq]

how do you find out the username and password? any hints?

[LoGiCaL__]

how do you find out the username and password? any hints?

Try looking up sql injection.

[Harbor]

how do you find out the username and password? any hints?

Try looking up sql injection.

Reading the thread also helps.

Basically, if you can't find a password in the source code, you either brute force (not recommended here) or SQL injection. Google that, google SQL injection, bypass login.

Google is an incredibly useful tool.

[Reletraso]

I'm not particularly sure how to save the changes I have made to the Nazi American page. Can I have some ideas on how I could do so?

[WallShadow]

I'm not particularly sure how to save the changes I have made to the Nazi American page. Can I have some ideas on how I could do so?

You can't save changes to the webpage, your job is to first gain access to the webpage. Try to find the secret.

[Zwo]

One of the hints on the first page had all the information on SQL injection I needed, although I'm still not 100% sure how/why it worked. Or rather, I feel there should've been something else after that part. Oh well, I guess I can chalk it up to "if you input the correct thing HTS just says 'congrats, move on'"