Welcome in the natas series walk-trough where you landed on the page to solve level 4 by yourself! The goal is to achieve the flag for level 5.
The Natas4 challenge says: The Access is disallowed, only user who comes from natas5 are allowed. So the goal in this challenge sounds easy, we have to move from level 5 to 4. But the password from 5 is in 4… We have to do like we’re from level 5. Where is that information stored?
HTTP headers allow the client and the server to pass additional information with the request or the response. A request header consists of its case-insensitive name followed by a colon ‘
:‘, then by its value (without line breaks).
Headers can be grouped according to their contexts:
- General header: Headers applying to both requests and responses but with no relation to the data eventually transmitted in the body.
- Request header: Headers containing more information about the resource to be fetched or about the client itself.
- Response header: Headers with additional information about the response, like its location or about the server itself (name and version etc.).
- Entity header: Headers containing more information about the body of the entity, like its content length or its MIME-type
If we look deeper into the possibilies using the HTTP header, we can change the referrer. More details about the referrer here. When ask for a webpage we’re talking about Request headers. The answer of the servers comes with the response header. We can also analyze our own header provided by loading a site, as well as the server response. This can be down by opening the Developer options, under the network tab. To see the headers of the main page, look for /, index.html or even index.php. The headers can be found on the right side bar under the header tab.
Can we also add a referrer if it doens’t exist? or change its current settings to act as we come from level 5?