Forum Discussion

Bronze III

10 months ago

Solved

Threat Research: AMPscript Analysis

This is one of those labs that I return to periodically and then abandon after half an hour whilst scratching my head........Does anyone have any pointers about how to approach this? Which fields ne...

defensive cyber

steven
10 months ago
so, base for this hack is this --> https://www.assetnote.io/resources/research/gaining-access-to-ubers-user-data-through-ampscript-evaluation
try for the message:
Message: %%[ SET @firstName = Lookup('driver_partners', 'firstname', 'partner_uuid', "5....") ]%% Hi there I'm %%=V(@firstName)=%% and I created this tool.
btw, you'll find all the nessesairy messages to solve the lab in the log. maybe you need to use cyberchef and urldecode.

netcat

Silver III

10 months ago

You have the issue that the response is always ""?
And also curl with the address or local IP just gives a HTTP 500?
And if you enter an invalid endpoint, it's still ""?
Same here.

Forum Discussion

Threat Research: AMPscript Analysis

Featured Places

Help

Related Content

Threat Research: Dependency Confusion Lab

Threat Research: Cobalt Strike C2 – SIEM Analysis - Question 4

Threat Research: Dependency Confusion Q8

Malicious Document Analysis: Dropper Analysis

Practical Malware Analysis: Static Analysis

Recent Discussions

Microsoft Sentinel Blue Team Ops: KQL Basics -Q11

Can I format the text in an interlude with HTML?

Ransomware: Snake

Having problems running the Python Expert Challenge 4 in OWASP Training: Access Control

Cyber Kill Chain: Reconnaissance