Saturday, November 1, 2014

Natas 6

This one let's you look at the PHP source code, which shows it seems to check the POST parameter against a secret that's pulled from the file "includes/".

Adding "includes/" on to the URL of the challenge brings us to the file that's being included and shows the secret string needed to gain access.

No comments:

Post a Comment