Over the wire Natas Level 8 Objective : Get password for Level 9 Solution: So here we get a input box that checks to see if it’s the right key to get the correct password We can see if the source code that the input we give is compared to a hardcoded string before it gives out the password $encodedSecret = "3d3d516343746d4d6d6c315669563362"; function encodeSecret($secret) { return bin2hex(strrev(base64_encode($secret))); so it takes our input, base64encodes it, reverses the string, then converts to HEX so theoretically we if we take the hard coded secret and run it through that sequence backwards we should have the value needed to match. I wrote a little python script to do the encoding for me import base64 string = '3d3d516343746d4d6d6c315669563362' print("The String is: ",string, "Length is :", len(string)) unhex = bytes.fromhex(string).decode('utf-8') print(&
@circusmonkey404 on the twitters; DM for contact