Natas6 includes a text box for us to input a "secret" into. I assume if we enter in the proper secret, the password for natas7 will be outputted.

I first tried to enter in some gibberish and see what I get back:


As expected, I get a "Wrong secret" error:


Something else that is new to this level is the View Source option. Clicking this gives me the source code:

<!-- This stuff in the header has nothing to do with the level -->
<link rel="stylesheet" type="text/css" href="">
<link rel="stylesheet" href="" />
<link rel="stylesheet" href="" />
<script src=""></script>
<script src=""></script>
<script src=></script><script src=""></script>
<script>var wechallinfo = { "level": "natas6", "pass": "<censored>" };</script></head>
<div id="content">


include "includes/";

    if(array_key_exists("submit", $_POST)) {
        if($secret == $_POST['secret']) {
        print "Access granted. The password for natas7 is <censored>";
    } else {
        print "Wrong secret";

<form method=post>
Input secret: <input name=secret><br>
<input type=submit name=submit>

<div id="viewsource"><a href="index-source.html">View sourcecode</a></div>

it looks like the secret key is loaded when the following code is run: include "includes/";

lets see what happens if we navigate to that page:


That's interesting, the page is empty. But i guess it makes sense because this page is not a valid HTML page. Lets see what happens when we inspect the source:


and there's the answer:


after we enter out secrete key "FOEIUWGHFEEUHOFUOIU", we can get the password: