Cookies

Question

Who doesn't love cookies? Try to figure out the best one. http://mercury.picoctf.net:6418/

Hint

No Hint

Solution

A box search is given to the challenge.

I tried to type snickerdoodlethen I got I love snickerdoodle cookies!. As the title of the challenge, this is related to cookies, so I opened the dev tool and looked for cookies. It has a value field with the type of number. I tried to change the number and reload the website to see what happened and there are some changes on the web page.

So, I thought that flag might be shown if I can reach a number of the value field. To be faster, I used Burp and using Burp Intruder to the brute force value field.

I tried to brute force with numbers from 1 to 20 and looked for responses -> got the flag

Flag

picoCTF{3v3ry1_l0v3s_c00k135_88acab36}

PreviousWeb Exploitation NextSome Assembly Required 1

Last updated 1 year ago

Question

Who doesn't love cookies? Try to figure out the best one. http://mercury.picoctf.net:6418/

Hint

No Hint

Solution

A box search is given to the challenge.

I tried to type snickerdoodlethen I got I love snickerdoodle cookies!. As the title of the challenge, this is related to cookies, so I opened the dev tool and looked for cookies. It has a value field with the type of number. I tried to change the number and reload the website to see what happened and there are some changes on the web page.

So, I thought that flag might be shown if I can reach a number of the value field. To be faster, I used Burp and using Burp Intruder to the brute force value field.

I tried to brute force with numbers from 1 to 20 and looked for responses -> got the flag

Flag

picoCTF{3v3ry1_l0v3s_c00k135_88acab36}

🔐

☢️

Cookies

Cookies

Category

Question

Hint

Solution

Flag

Category

Question

Hint

Solution

Flag