A Christmas Crisis

Web Exploitation - Cookies

Video

Rooms

Web Fundamentals

Challenge

Deploy your AttackBox

No answer needed

Enter the site and register a new user.

Login with the previous registered user.

What is the name of the cookie used for authentication?

auth

In what format is the value of this cookie encoded?

Hexadecimal

Having decoded the cookie, what format is the data stored in?

JSON

Figure out how to bypass the authentication.

What is the value of Santa's cookie?

7b22636f6d70616e79223a22546865204265737420466573746976616c20436f6d70616e79222c2022757365726e616d65223a2273616e7461227d

Now that you are the santa user, you can re-activate the assembly line!

What is the flag you're given when the line is fully active?

THM{MjY0Yzg5NTJmY2Q1NzM1NjBmZWFhYmQy}

PreviousAdvent of Cyber IINextThe Elf Strikes Back!

Last updated

Was this helpful?