Forum Discussion

Icon for Bronze II rank

Bronze II

4 months ago

Web App Hacking Lab

I am stuck on the last question of this lab.

Question 13 - Return to the /login page and log in as the admin of the site. What is the token you receive?

I have been trying to use OWASP ZAP but cant seem to figure it out. Any help would be greatly appreciated. Thanks.

9 Replies

netcat
Silver II
4 months ago
If it's 'Intro to Web App Hacking: Mapping Web Applications': I wonder how you solved the previous question: Did you just guess the solution in the answer box, or verified it?
- JDeVillar
  New Member I
  15 hours ago
  I saw that admin was mentioned in the Briefing so I used that
- wakedd
  Bronze II
  4 months ago
  I actually looked at the robot.txt file and saw the /admin page listed in there
  - netcat
    Silver II
    4 months ago
    Aren't you curious to see what is forbidden for robots?
TillyCorless
Community Manager
4 months ago
Thanks wakedd

I've passed on your query internally for a possible tip, however if in the meantime a fellow community member can offer any hints, please do!
- JDeVillar
  New Member I
  15 hours ago
  Is there any answer for this one? TillyCorless ??
  i have to complete this course and cannot log in as Admin and there is no instruction for how to
TillyCorless
Community Manager
4 months ago
Hi wakedd, can you share the full lab title with me please? I think you're referring to Intro to Web App Hacking: Dirbuster - Custom Headers, but can't be sure.

Thanks!
- wakedd
  Bronze II
  4 months ago
  Intro to Web App Hacking: Mapping Web Applications