i want to be someone else

mikev734

Ok, heres the deal. I found this wargames site and im on the last level in one of the games but im now stuck here. Heres the link: http://dievo.org:82/apprentice/level5aaa/lvlll9.php
What you have to do is make the site think that you are coming from http://adminsAtWus.com. I came here since this is a PHP website. there was another level where you had to input the password as: ?password=eagle at the end of the URL. I was thinking you had to do something like that using the ? symbol and the equals sign. can anyone help me on how to make the site, http://dievo.org:82/apprentice/level5aaa/lvlll9.php think that im coming from http://adminsAtWus.com? PS. adminsAtWus is not a real site.
any help will be greatly appreciated.

TheDefender

You need to know what the index for their code is for that particular variable or send a bogus HTTP_REFER (depending on how their site is coded)... But, basically, what you are asking is for us to tell you how to inject variables into someone else's script. That's not a safe practice, and hopefully that site is smart enough to prevent you from injecting any variables, because in theory, it could be malicious... What you need to do is contact the site owner, and find out how to get what you want from their site.

Davy

Afternoon, we know you come from http://www.phpbuilder.com/board/showthread.php?s=&threadid=10284716
but only admins from our trusted domain http://adminsAtWus.com is allowed in here

NO WAY. Get a life and stop messin with people's sites.

laserlight

and hopefully that site is smart enough to prevent you from injecting any variables, because in theory, it could be malicious

It is probably one of those "be a 'hacker'" games.

But yeah, forging HTTP_REFERER might be a good try.

TheDefender

I hear ya laser.. mike, either work with PHP coding legally, or move on to another language, so our community doesn't have any liability. Either way, don't come here asking for help with hacking a site anymore...

Shrike

I think part of the game is to fake the referring URL.