August 14, 2019
Logging into natas6, a link to the source code, a input field to insert a secret and a submit button.
The source code looks very typical, we can see the php code between h1 header and the form.
Analyzing the code we can see the include header gives us the path to the secret. The include “includes/secret.inc;” says that all code that exists in file (includes/secret.inc) will be included in the file that calls it.
By entering includes/secret.inc at the end of the URL, we then see a blank page, by viewing the page source of the blank web page we can see the secret.
Inputting the secret password into the input field and submitting it.
We now have the password for the next level.