OverTheWire Natas Level 0 tutorial!!

Login

Natas uses HTTP Basic Auth.
Open http://natas0.natas.labs.overthewire.org in your browser. When prompted, log in with:

• Username: natas0
• Password: natas0

💡 Tip: You could also use curl -u natas0:natas0 <URL> from the terminal, but throughout this series we focus on solving directly in the browser.

Task

The password for the next level (natas1) is hidden in the page’s HTML source.

A little bit of Theory

• Basic Auth: the browser automatically sends Authorization: Basic ... with your credentials once logged in.
• View Page Source shows the raw HTML delivered by the server. This is different from the DOM inspector.
  • Windows/Linux: Ctrl+U
  • macOS: ⌥ Option + ⌘ Command + U
• Sensitive info is often tucked away in HTML comments: <!-- ... -->.

Further reading:

• MDN: Basic Authentication
• MDN: View Source vs. DevTools

Solution

1. Log in with natas0 / natas0.
2. Right-click → “View Page Source” (or press the shortcut).
3. Search for an HTML comment that contains the password for natas1.

1. Copy the password carefully — no extra spaces or newlines.
2. Go to the next level:
   • URL: http://natas1.natas.labs.overthewire.org
   • Username: natas1
   • Password: (the one you just found)

Password

0nzCigAq7t2iALyvU9xcHlYN4MlkIwlq

Troubleshooting

• Getting re-prompted for credentials? → Double-check username/password casing.
• Can’t see the comment? → Ensure you are viewing Page Source, not Elements in DevTools.
• Still unsure? → Try another browser or fetch HTML with curl as a fallback.

Congrats 🎉 You cracked your very first Natas level by simply looking under the hood of the web page!

Thanks for reading!

Until next time — Otsumachi!! 💖☄️✨