OverTheWire Natas Level 3 -> Level 4

April 25, 2024

OverTheWire Natas Level 3 -> Level 4 - Walkthrough

OverTheWire Natas Solutions

Introduction

In this level, I'll give you a walkthrough to the natas wargame Level 3 -> Level 4. This level can be completed in various different ways. I will be using the curl command to get the password.

Goal

Login details

URL - http://natas4.natas.labs.overthewire.org
Username - natas4
Password - tKOcJIbzM4lTs8hbCmzn5Zr4434fGZQm

Theory

curl or Client URL enables data exchange between a device and a server through terminal. We will use it to pass the username-password along with the referrer and the URL to which access is required.

There are various browser extensions available on the internet which can be used to set the referrer and then refresh the page to get the password. Burp Suite can also be used to intercept the packet and get the password.

Solution

Open the URL in a browser. Enter the username and password mentioned above.

The below screen appears on successfully logging in that gives the message that says that authorized users should come only from "http://natas5.natas.labs.overthewire.org/".

Here, viewing the source code will not give us any help. Therefore, we will use curl to set the referrer and get the password for natas5. Open cmd on your system and type-:
curl --user natas4:tKOcJIbzM4lTs8hbCmzn5Zr4434fGZQm --referer http://natas5.natas.labs.overthewire.org/ http://natas4.natas.labs.overthewire.org/

This completes Level 4 walkthrough as we have got the password for natas5 in the command prompt. Please post your questions and doubts in the comment section.

Search This Blog

Identity And Access Management

OverTheWire Natas Level 3 -> Level 4 - Walkthrough

Comments

Post a Comment

Popular Posts

OverTheWire Bandit Level 25->Level 26 - Walkthrough

OverTheWire Bandit Level 32->Level 33 - Walkthrough