Challenge - POST Practice - CTFlearn - CTF Practice - CTF Problems

POST Practice

40 points Medium

This website requires authentication, via POST. However, it seems as if someone has defaced our site. Maybe there is still some way to authenticate? http://165.227.106.113/post.php

Flag

Web · intelagent

22838 solves

Top10

1 ross3102 0h 00m 00s

2 alexkato29 + 1h 00m 21s

3 emperorlepone + 3h 41m 34s

4 dknj11902 + 4h 45m 40s

5 0xibram + 19h 38m 14s

6 thanhbok26b + 1d 7h 15m 33s

7 voidmercy + 1d 11h 10m 33s

8 niclev20 + 2d 20h 49m 31s

9 limyunkai19 + 3d 6h 55m 28s

10 nandayo + 4d 1h 56m 18s

Rating 4.44

Must solve to rate

Discussion

New
Popular

Leave a Comment (Supports Markdown)

Protect this comment

0x324

1 week ago

Reply Share

Easy

Leave a Comment (Supports Markdown)

Protect this comment

bluecap

1 week ago

Reply Share

i had to first install curl in system and then send a post request to the site. the site was down so had to take reference from sites to get the userid and password. but learnt a lot

Leave a Comment (Supports Markdown)

Protect this comment

L1RUL

2 weeks ago

Reply Share

Wayyyy to easy, should be easy difficulty, all I did is download a html source code viewer apk and view the source code, login, copy the flag and done!

Leave a Comment (Supports Markdown)

Protect this comment

Torch4084

2 weeks ago

Reply Share

Protected

Leave a Comment (Supports Markdown)

Protect this comment

gretagoulash

2 weeks ago

Reply Share

This one is broken, don't pull your hair out over it, Ended up checkin g amedium walkthrough, I did everything right and it's returning weird HTML when just sending the POST request should give you the flag.

Leave a Comment (Supports Markdown)

Protect this comment

Harixx

3 weeks ago

Reply Share

site doesn't work

Leave a Comment (Supports Markdown)

Protect this comment

speedmisza

3 weeks ago

Reply Share

site doesn't work

Leave a Comment (Supports Markdown)

Protect this comment

Torch4084

1 month ago

Reply Share

Not bad

Leave a Comment (Supports Markdown)

Protect this comment

0xveczif

1 month ago

Reply Share

curl it

Leave a Comment (Supports Markdown)

Protect this comment

nullpointer

1 month ago

Reply Share

light work no reaction

Leave a Comment (Supports Markdown)

Protect this comment

inexiz

3 months ago

Reply Share

you can solve it different ways i tried curl and running a python script in my terminal (wsl) and both worked and you can use burp-suite also or anything really or even using console in developer tools and making a js script . or even Using an HTML File making a button with a functional js on it so when clicked it'll grab the flag for you. The key here is To be creative solve it different ways and search and understand what you are doing

Leave a Comment (Supports Markdown)

Protect this comment

fluffyprincess

4 years ago

Reply Share

Incorrect difficulty, should be EASY

Leave a Comment (Supports Markdown)

Protect this comment

JustAstupidBugHunter

3 years ago

Reply Share

Protected

Leave a Comment (Supports Markdown)

Protect this comment

vanam73162

1 year ago

Reply Share

Protected

Leave a Comment (Supports Markdown)

Protect this comment

ErrorTerror

11 months ago

Reply Share

nerd emoji

Leave a Comment (Supports Markdown)

Protect this comment

gonelastvirus

2 years ago

Reply Share

curl -X POST -d 'username=<find it>' -d 'password=<find it>' http://165.227.106.113/post.php

Leave a Comment (Supports Markdown)

Protect this comment

ctfmaster

4 years ago

Reply Share

Found how to use curl. Nice challenge :)

Leave a Comment (Supports Markdown)

Protect this comment

vanam73162

1 year ago

Reply Share

Protected

Leave a Comment (Supports Markdown)

Protect this comment

vanam73162

1 year ago

Reply Share

Protected

Leave a Comment (Supports Markdown)

Protect this comment

Arduino-05

4 years ago

Reply Share

Protected

Leave a Comment (Supports Markdown)

Protect this comment