OverTheWire:- Updated Natas Walkthrough — Level 18

3 min readApr 7, 2024

Hello everyone, I would like to share how I solved Nastas CTF also Here is the updated password, I hope this write-up will be helpful.

hello Folks!!! it’s a samxia99
My Bio link:-https://beacons.ai/samxia99
Greetings everyone! I’m excited to share with you how I was able to successfully conquer a CTF challenge. Through this write-up, I’ll provide a clear explanation of my techniques and strategies, and I’m confident that it will greatly benefit those who are interested in CTF challenges. So, sit back, relax, and let me take you on an informative journey.

Just a quick reminder that the game has been updated, so the password has also been changed. I hope this password is helpful!

Natas Level 17 → Level 18

Here are the login details.

Username: natas18
URL:      http://natas18.natas.labs.overthewire.org

After logging in we can see this page.

I tried to login with some name and admin but it shows the same thing so we can guess this is not the key to solving this level. let’s try to find another method.
I also view source code but there is not much clue. so let’s see in the burp suite make sure to on intercept.

Here we get session id Cookie: PHPSESSID=20 so we can try to brute force this to do this we need to share this with the intruder.

First, we need to clear all and we need to brute force PHPSESSID=§20§ so add 20. now go to payload and change payload type to numbers make TO 800 step keep 1.