Open in app

Sign in

Write

Sign in

Welcome To HackTheBox :-) How to register???- Walkthrough

Sakshi Aggarwal
3 min readAug 9, 2020

--

An online platform to test and advance your skills in penetration testing and cyber security. Join now and start H4CK1NG. Go to the website and register yourself.

Click on join Now.

OOPSS!!! What’s that. It’s a challenge. We need to hack the page and get the invite code. After entering the invite code than only we will be able to Sign Up. What should we do now :-(

No worries :-D

Get some help by clicking on the button click Here! There is a hint “You could check the console…”

Ummmm!!! So now we need to find out console. Console enables you to interact with a web page by executing JavaScript expressions in the context of the page.

Open the Developer Tools by right clicking > Inspect.

Here we found the console. There we got another hint “This page loads an interesting javascript file. See if you can find it :) ”

Now, we need to find a javascript file that is related to the invite code. See in the source code there is a link “/js/inviteapi.min.js” . This link can be useful to us.

Go to the link- https://www.hackthebox.eu/js/inviteapi.min.js

Here, we found some commands that can be useful for us.

Commands:- makeInviteCode , invite , generate can be useful. makeInviteCode seems to be most useful. Lets try this in console.

Go back to the link https://www.hackthebox.eu/invite and then go to console. Type the command.

Here we got another link. Follow the link-https://www.hackthebox.eu/api/invite/how/to/generate (it’s a post type request)

This error was expected because the link we followed is a POST type but the browser generates GET type request.

Use CMD (command prompt) if you are using Windows to generate a POST type request.

Use the command:

curl -XPOST https://www.hackthebox.eu/api/invite/how/to/generate

We got a data which is BASE64 encrypted. Copy the data. Go to any online BASE64 decoder.

Again we got another link which is again a post request. So go back to CMD and use same command as earlier.

Again, we found a code which is encoded. It may be a BASE64 encodes. Copy and paste in decoder and check if we find some useful content.

We found some code , it may be our invite code. Copy the code and go back to the link https://www.hackthebox.eu/invite and paste it.

YEAH!!! This was our invite code.

Here is the sign up form for us. Register Now.

H4PPY H4CK1NG!!!

Thank you:-)

Cybersecurity
Hackthebox
Penetration Testing
Hackthebox Walkthrough

--

--

Sakshi Aggarwal
Sakshi Aggarwal

Written by Sakshi Aggarwal

81 Followers
18 Following

Digital forensics enthusiast | Cyber security | Bug hunter | Java | Python | Analyzer

No responses yet

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams