POST Practice
40 points Medium

This website requires authentication, via POST. However, it seems as if someone has defaced our site. Maybe there is still some way to authenticate? http://165.227.106.113/post.php

Flag
Top10
1 ross3102 0h 00m 00s
2 alexkato29 + 1h 00m 21s
3 emperorlepone + 3h 41m 34s
4 dknj11902 + 4h 45m 40s
5 0xibram + 19h 38m 14s
6 thanhbok26b + 1d 7h 15m 33s
7 voidmercy + 1d 11h 10m 33s
8 niclev20 + 2d 20h 49m 31s
9 limyunkai19 + 3d 6h 55m 28s
10 nandayo + 4d 1h 56m 18s
Rating 4.44
5
4
3
2
1

Discussion

Easy

0

i had to first install curl in system and then send a post request to the site. the site was down so had to take reference from sites to get the userid and password. but learnt a lot

0

Wayyyy to easy, should be easy difficulty, all I did is download a html source code viewer apk and view the source code, login, copy the flag and done!

0
Protected
0

This one is broken, don't pull your hair out over it, Ended up checkin g amedium walkthrough, I did everything right and it's returning weird HTML when just sending the POST request should give you the flag.

0

site doesn't work

0

site doesn't work

0

Not bad

0

curl it

0

light work no reaction

0

you can solve it different ways i tried curl and running a python script in my terminal (wsl) and both worked and you can use burp-suite also or anything really or even using console in developer tools and making a js script . or even Using an HTML File making a button with a functional js on it so when clicked it'll grab the flag for you. The key here is To be creative solve it different ways and search and understand what you are doing

0