Basic Mission 5

[Aeneid45]

I know this hasn't been posted in a while, but I have a question. I completed this challenge in the exact same way as challenge 4 (the password was displayed a bit differently), with no use of JS or anything else. I decided I would see what the mission would give me if I did it in the same way as the previous one, and it gave me the correct password. I will come back to this mission and see what I can do with JS...

Any thoughts on this?

Right, this has come up a lot since firebug has gotten big (not saying you used that), and other developer tools. Initially the challenges had almost a set way of doing things. Doing my best not to spoil, but basic 4 is about 'manual html manipulation' and basic 5 requires a javascript injection. If you used a tool or addon the same process is taking place and what a lot of newer users are experiencing is that they are actually using basic 5 technique to solve basic 4, as it will also work that way. PM me and I'll break it down more for you if you like.

I would if I could figure out how...

I was using Firebug...so basically Firebug did the JS injection for me? I'll have to redo it myself then...

[limdis]

Ah yes, I tend to forget myself. You need to have a post count of 2 before you can PM in the forums. But yes, that is exactly what happened. Press Ctrl+Shift+K and manually enter in the injection to change what needs to be changed. You'll find it's a bit more complicated. But also will introduce you to what is really being covered here.

(You should be good to PM now.)

[LoGiCaL__]

Basic missions are much better and I feel you learn more when NOT using firebug. But, that's not to say you can't do it in firebug first and then re-visit them later when you have a better grasp on things.

[Aeneid45]

I see. I thought FB was just a tool...turns out it does stuff for me. I will definitely play with this. Thanks!

[ebasty]

EDIT: sorry, re-read the thread and my question was already answered

[GreenMonkey79]

Technically it worked to solve the problem and I guess it was actually more efficient, but I'd like to know what exactly I did to make that happen if that isn't what was supposed to happen. You know, so I can use injections and stuff better in the future.

The emails used to be sent via email. I still have a couple of them lol. However, allowing that hack to actually take place led to some security flaws for HTS. So protective measures had to be put in place to prevent that. But do know that the injection that you used would have in fact sent the password to your email.


For those that are wondering, the email used to simply be this:

From Sam@www.hackthissite.org 4/8/05
to me

Sam,
Here is the password: '******'

Removed the password obviously

Thanks! So, I also had this issue. Been struggling with this for awhile and ALSO wanted to make sure that the expected result (irl situation) would be different to what was actually happening.