Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- 1) I installed "Edit this cookie" https://chrome.google.com/webstore/detail/edit-this-cookie/fngmhnnpilhplaeedifhccceomclgfbg
- 2) I entered the page: http://pentesteracademylab.appspot.com//lab/webapp/cookie/1
- and clicked on the "Edit this cookie" icon
- 3) This cookie 'user_id' has the following content: TVE9PQo=
- 4) We can use base64 command line to decrypt this string. I used base64d twice because the first one returns another base64 string
- $ echo -n "TUE9PQ==" | base64 -d | base64 -d
- The output is: 0
- 5) '1' should give us the webpage access
- $ echo -n "1" | base64 | base64
- The output is: TVE9PQo=
- 6) Click again over the "Edit this cookie" icon, and update the 'cookie' value with this new one
- TVE9PQo=
- I choose Host and Session selected, then send again this cookie.
- 7) reload the webpage
- Well done!This challenge has been cracked!
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement