Home SQL Injection XSS HTTP Res Splitting     Reset Session View Source

Welcome to the NTO Hackme Test Site

This is a support site for listeners of the Mighty Seek Podcast - Hands On Series.
The Hands On Series is designed to give the step by step of Web App hacking as taught in classes that can cost as much as $3000 for a 3 day course. All for the low low price of... FREE.

Please respect the site and what it is setup for. We are continually monitoring the site to make sure it is stable, and secure but by its very nature we are having to allow actions would normally be block. Because of this, the site may have other unintended exploits from time to time. So please bear with us, practice safe browsing and have fun.

On each page there is a View Source link in the header, so that you can view the source code and better understand whats happening in the code.

Handy Resources

Episode #01 - SQL Injection Part 1 [Intro]

Login Page using GET - login as admin/admin. Then try and login as admin without using the password, and instead using SQL Injection techniques.
Login Page using POST - Use a local Proxy like Paros to modify your requests.
Restore the database - Put the database back in its original condition.
SQL Injection - The full collection of attackable pages for SQL Injection.

Episode #02 - Cross Site Scripting (XSS) Part 1 [Intro]

Attackable Product Review System
XSS Cheatsheet
Reset your session - Use this if your submissions have messed up the html so that your attacks no longer work. This will give you a clean slate.

Episode #03 - SQL Injection Part 2 [Intermediate] (in production)

Login Page using GET - login as admin/admin. Then try and login as admin without using the password, and instead using SQL Injection techniques.
Login Page using POST - Use a local Proxy like Paros to modify your requests.
Login Page protected by addslashes - Using the commonly used addslashes to protect the SQL statement, which can be hacked as detailed by Chris Shiflett.
Login Page properly protected - This one is not hackable. Try for yourself.
Restore the database - Put the database back in its original condition.
SQL Injection - The full collection of attackable pages for SQL Injection.

Episode #0? - HTTP Response Splitting (in planning)

Simple search redirector
Cookie value for previd is set based on GET param previd - We can use this to experiment with full HTTP header re-writing
Copyright © NT OBJECTives, Inc. All Rights Reserved.