Authentication Bypass room will teach you methods where you can bypass the authentication process or get a higher user account access.
the room is fairly simple and it’s part of Jr Penetration Tester Path, so only answers will be provided
What is the username starting with si*** ?
simonWhat is the username starting with st*** ?
steveWhat is the username starting with ro**** ?
robertWhat is the valid username and password (format: username/password)?
steve/thunderWhat is the flag from Robert’s support ticket?
THM{AUTH_BYPASS_COMPLETE}What is the flag from changing the plain text cookie values?
THM{COOKIE_TAMPERING}What is the value of the md5 hash 3b2a1053e3270077456a79192070aa78 ?
463729What is the base64 decoded value of VEhNe0JBU0U2NF9FTkNPRElOR30= ?
THM{BASE64_ENCODING}Encode the following value using base64 {“id”:1,”admin”:true}
eyJpZCI6MSwiYWRtaW4iOnRydWV9That’s all for this room.
Recent Comments