Use of Firebug, Firefox extension

Credit for this post goes to Felipe Martins,CEH, OSWP, Security Specialist at Future Security, Brazil HackThisSite (http://www.hackthissite.org)Basic Missions Challenge #04 Solution This is the first HackThisSite (http://www.hackthissite.org)challenge where we actually need to make use of a firefox plugin called FireBug to change certain html parameters to work on the fly in order for us to get the password. On the Basic Mission #04, it’s designed to teach the beginner how to use his/her common sense above any. The beginner must understand the basic concepts of information gathering, HTML and source code inspection as well as having a little bit of common sense to solve the challenge. In this mission, same as the previous ones, the beginner will have to write the right password to continue to the next challenge. In order to find the correct password we’ll have to inspect the source code to find some hints and use some common sense. Pay close attention the the source code to understand the logic behind this challenge and experience the common mistakes a beginner programmer can make in the code when using authentication on their pages. Solution: right click the mouse when in Basic #04 webpage-select "view source code"-this lets you view the HTML code. search for the string "send password to sam" -for now just note where this string appears. Now-add "Firebug" extensio to Firefox. Go back to Hackthissite basic challenge #04 and view the webpage with form button that says "send message to sam" and form for password with "submit" button. Now invoke "firebug" from Firefox and search for string "send password to sam". Next replace the email address in the HTML code with your email address. Now go back to webpage and click on "send password to sam" button (do not click on submit). the correct password will appear in another tab. copy the password and input it in the password form box and click submit. Voila! you did it.