webProeasy

Маскарад (Masquerade)

bug-makers

Task: Express.js app splits flag into 5 parts, each revealed by a new unique User-Agent within the same session. Solution: Reuse the connect.sid session cookie while changing the User-Agent header across 5 requests to collect all flag parts.

$ ls tags/ techniques/

user_agent http_headers session_management express_js connect_sid cookie_reuse

session_cookie_reuse_with_different_user_agentsexpress_session_state_trackingmulti_part_flag_collection

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

🔒

Permission denied (requires tier.pro)

Sign in to access full writeups

$sign in

$ grep --similar

Similar writeups

[web][Pro]Покажи, если сможешь (Show me if you can)— bug-makers
[osint][Pro]Бесславные БАГоделы— bug-makers
[web][Pro]Вокруг света— bug-makers
[web][Pro]Скоростные Пазлы – 2 (Speed Puzzles – 2)— bug-makers
[web][Pro]Web-полигон (Web Polygon)— duckerz