Over the wire Natas Level 5

Over the wire Natas Level 5

Objective:

Get password for Level 6

Solution:

This page just shows a text box

Access disallowed. You are not logged in

So this is saying we aren’t logged, we just logged in so there must be something else here that is tracking whether we are logged in or not.

Lets just take a look at the cookies using a cookie editor to see if there is something there that tracks if we are logged in or not

Yup

In the cookie for this site we see a value named “Loggedin” and is set to 0

Lets try flipping it to 1 and see what happens

Access granted. The password for natas6 is aGoY4q2Dc6MgDq4oL4YtoKtyAg9PeHa1