This is the second walkthrough of Defend the web and in this blog, we will solve Intro Levels 3rd and 4th. Today you will also learn some new methods of finding vulnerabilities in websites by solving these two levels. So now we can start our blog…
INTRO LEVEL – 3 / JAVASCRIPT
This level is very easy because we don’t have to go anywhere, we just have to open our “Inspect element” and scroll down…
So right-click anywhere and press on inspect element then scroll down till the end. After that, you can see a variable called ( var_correct ) in the javascript of the website…
There you can find your password in that variable as shown in the image…
Now just paste it and your level will be completed, we can come to level 4th now. This is an easy level though 😏
INTRO LEVEL – 4
So in the 4th level, as we do in the previous blog same thing we will do in this level. Which is viewing the source code of the page but this time the username and password are hidden in another form…
For finding them we have to scroll down till line 457, In that area, the username and password are hidden. We tell you where they are so they are hidden in a directory of the website whose path is given in this source code.
Can you see a path text defined in the value section of line number 473? If you didn’t see it so look at the image –
Now copy this path and paste it into the URL section of your browser but first, you have to put backslash ( / ) at the end of the URL for pasting that path …
After that, you will get the username and password so just copy it and paste it on your level’s page…
So our third and fourth levels are also completed, we know about some new things or you can say some new methods of finding vulnerabilities in the website. Now if you want so you can try solving some levels by yourself and we will come with the next walkthrough soon…
If you have any problem with our blog so you can comment to us we will try to fix it.
– Yash Choudhary
