Category: Basic

Hack This Site: Basic Web Challenges – Level 11

This is the final challenge in the Hack This Site Basic web series. The series as a whole has been fun and I recommend giving it a go. This challenge doesn’t require any form of exploitation. Instead, it relies on the user’s knowledge, whit, and exploration skills. It’s a bit of a cheeky challenge as the last part had me scratching my head for a bit….


Hack This Site: Basic Web Challenges – Level 10

Oh dear we are hacking the web again. Today, we’re looking at Hack This Site Basic Web Challenges level 10. This challenge looks at the ways in which cookies can be manipulated. A cookie is a small file that contains data, the data is utilised by the web applications to make decisions. For example, if you add an item to your shopping basket then the website could issue a cookie which contains that information. That way, when you revisit the application, the item is still in your basket. If you haven’t see my previous posts in this series then you can do so here: Part 1, Part 2, Part 3, Part 4, Part 5, Part 6, Part 7, Part 8, and Part 9….


Hack This Site: Basic Web Challenges – Level 9

Welcome to HaXez, today we’re looking at Hack This Site Basic Web Challenge Level 9. This challenge is similar to level 8 and you have to use the level 8 application in order to complete it. It requires thinking outside the box and using level 8 as the platform to launch the attack. If you…


Hack This Site: Basic Web Challenges – Level 8

Hello and welcome to HaXeZ, today we are looking at Hack This Site Basic Web Challenge level 8. This challenge requires you to perform a Server Side Include injection in order to retrieve the password. A server side include is a chunk of code in a separate file that you can include in different pages. For example, if you had a website with a header and a side menu. You could put the header and side menu in separate files and then include them on other pages with a single line such as ““. A Server Side Include Injection attack exploits web forms that accept user input to generate files….


Hack This Site: Basic Web Challenges – Level 7

Today we’re looking at Hack This Site Basic Web Challenge 7. This challenge requires performing command injection to complete it. Command injection is a type of attack that allows the malicious threat actor to execute arbitrary commands on the host system….


Hack This Site: Basic Web Challenges – Level 6

basic web challenge level 6. If this is your first time here you can read parts 1 through 5 here: Part 1, Part 2, Part 3, Part 4, and Part 5. This challenge is about reverse-engineering the encryption that Sam has used to encrypt his password. …


Hack This Site: Basic Web Challenges – Level 5

ome back to my series on the Hack This Site Basic Web Challenges. Today we are looking at basic challenge level 5. If you haven’t read my other posts in the series, you can do so here: Part 1, Part 2, Part 3 and Part 4. This challenge is similar to part 4. We need to modify the Send password to Sam request in order to change his email to our email. However this time I’m going to use a different method of doing so….


Hack This Site: Basic Web Challenges – Level 4

Today we are looking at Hack This Site Basic Web Challenge Level 4. If you haven’t read through my previous posts in this series then you can find them on HaXeZ.org. This challenge requires the user to have some knowledge of HTML. The objective of this challenge is to recover the password however sneaky Sam has added an email script to the application. …


Hack This Site: Basic Web Challenges – Level 3

Back again with another Hack This Site article, please check out my other posts in this series part 1 and part 2. This time we are taking on the basic web challenge level 3. This challenge involves some knowledge of how web applications are structure….


Hack This Site: Basic Web Challenges – Level 2

Web Application security. As part of that journey we are exploring Hack This Site. Hack This Site is a website that allows you to test out your web application security skill by taking on various challenges. If you haven’t already done so, go and check my post on Level 1. …