Welcome

To complete these challenges you should only need your browser's developer tools (and maybe Google!). During these challenges you will learn to:

• Find clues left by mistake by the developer.
• Modify the HTML to circumvent validation.
• Perform XSS injections.
• Perform SQL injections.

This training tool is is free to use.

I only ask that you play nice and don't try performing attacks that aren't part of the exercises. This isn't a commercial CTF or exploratory security testing platform. If you manage to execute an attack that corrupts the data or takes the application offline, that ruins it for everyone.

Challenge

For the first challenge, can you figure out how to get through this login page.

HINT: Expand me for a hint

View the source code by right clicking on the page or opening the developer tools.