Uh oh. Looks like your using an ad blocker.
Our site is support by ads that help to pay our hosting costs. Please disable or whitelist us within your ad blocker to help us keep the site online.
All money generate by ads and donations is used to pay the hosting costs of the site.
View Thread
| Author | Odd trouble with realistic 1 | PlusNine
Member
Posts: 5
Location:
Joined: 12.05.20
Rank: Hacker Level 2 | | Hello HBH! I think I've ran into my first real conundrum with the first realistic challenge. After acquiring the .txt files for the johndoe login, and attempting to login with the "special cookie" as the same cookie in the text file (they matched already) still results in "Your user and pass didn't match our records". I feel like this should work, yet it does not. Am I missing something here?
Edit 1: For clarification, I seem to be having an issue with the password. It seems encoded but my attempts at decoding so far have just resulted in more confusion. Why is this stored in plaintext and yet doesn't work the way it's presented?
Edited by PlusNine on 28-06-20 23:36 |
 |
| Author | RE: Odd trouble with realistic 1 | Huitzilopochtli
Member
Posts: 1644
Location:
Joined: 19.02.13
Rank: God | | Am I missing something here?
Yes.
There is something else in that text file along with the usernames and passwords, that you haven't mentioned anywhere in your post.
You need that.
. | |
|
| Author | RE: Odd trouble with realistic 1 | PlusNine
Member
Posts: 5
Location:
Joined: 12.05.20
Rank: Hacker Level 2 | | Huitzilopochtli wrote:
Am I missing something here?
Yes.
There is something else in that text file along with the usernames and passwords, that you haven't mentioned anywhere in your post.
You need that.
I think I communicated my problem inccorrectly. This "something else" is in the same text file correct? It seems to be referred to as a different name within the login page itself, and after attempting to change the name of this "ID" and making sure it matched with what was in the text file for the base user (again I'm confused by that as well, why was this "ID" already set seeming correctly when I hadn't done anything to it yet?) I still have not made any progress | |
|
| Author | RE: Odd trouble with realistic 1 | Huitzilopochtli
Member
Posts: 1644
Location:
Joined: 19.02.13
Rank: God | | This challenge is more about privilege escalation than anything to do wiith the usernames and passwords.
You just need to change one thing in order to achieve that, and the clue's in the name, it's already been "set" as an extra hint.
. | |
|
| Author | RE: Odd trouble with realistic 1 | Exc3ll0
Member
Posts: 1
Location:
Joined: 10.10.20
Rank: Active User | | There is one thing that did mislead me on this challenge and I'm having a feeling it's misleading you to, the password you're seeing on the text file isn't encoded at all, it's right there in plain text 
After that, well, you have to grab the one thing you haven't mentioned in your post and change it to something that would give you higher access priveleges. | |
|
|
