HACKTHISSITE.ORG | Basic 10: Javascript, really?

This level does seems to be lot tougher than the previous levels as it does not tell us what we need to do. Yes, the intro does tells us that knowledge of javascript might be helpful, but still no clue, how?

This time Sam used a more temporary and “hidden” approach to authenticating users, but he didn’t think about whether or not those users knew their way around javascript…

Well, we can give a try using all the tricks we have learnt by now, but none of them seems to be working. The task is to think of something that is temporary and hidden from users. Haven’t figured it out by now?

Continue reading “HACKTHISSITE.ORG | Basic 10: Javascript, really?”

HACKTHISSITE.ORG | Basic 9: Not difficult but tricky

The password is again hidden in an unknown file. However, the script that was previously used to find it has some limitations. Requirements: Knowledge of SSI, unix directory structure.

The intro for level9 points us towards using SSI and UNIX commands and its directory structure. Well, here we get our first clue. Let us now move on to the description, and see what it says.

Continue reading “HACKTHISSITE.ORG | Basic 9: Not difficult but tricky”


SSI stands for server side includes. These are dynamic HTML commands executed by the server and not the browser. As the intro of the mission already pointed us to SSI this mission would be simple now.

The password is yet again hidden in an unknown file. Sam’s daughter has begun learning PHP, and has a small script to demonstrate her knowledge. Requirements: Knowledge of SSI (dynamic html executed by the server, rather than the browser).

Furthermore when we open the mission we see a story, somewhat like level7, the password being hidden in a file and we being provided with the file directory. All we are left to do is find the file name.

Continue reading “HACKTHISSITE.ORG | Basic 8: SSI”


Sam still believes saving the password in a file is still the best way to remember it and keep it secured, time to prove him wrong once again. As the description says the password is in the same directory(folder) as we are.

This time Network Security Sam has saved the unencrypted level7 password in an obscurely named file saved in this very directory.

The second line of the description tell us about one another news that came from Sam, about setting up an UNIX cal command script and with that we are provided with the script even.

Continue reading “HACKTHISSITE.ORG | Basic 7: Unix”