Forum Discussion

sabil10's avatar
sabil10
Icon for Bronze II rankBronze II
25 days ago

Advanced CTF Challenge: Serial Maze

Need hint on Serial Maze. Have gone through html & javascript, couldn't find the token. 

Using dirb found one endpoint "http://10.102.17.87/2257", its response "What a pickle... You need the secret to continue."

No sure how to proceed form here.

Thanks,

Sabil

3 Replies

  • I'm stuck...

    tried deserialization on both move/submit endpoint.. unable to exploit.

    tried rockyou and both endpoint  token .. failed..

    found one endpoint 2257 .. which is asking for secret.. but don't see any parameter to brute force..

    I'm stuck... would appreciate any hints

    TIA