Forum Discussion

Icon for Bronze II rank

Bronze II

6 months ago

Web App Hacking Lab

I am stuck on the last question of this lab.

Question 13 - Return to the /login page and log in as the admin of the site. What is the token you receive?

I have been trying to use OWASP ZAP but cant seem to figure it out. Any help would be greatly appreciated. Thanks.

10 Replies

netcat
Silver III
6 months ago
If it's 'Intro to Web App Hacking: Mapping Web Applications': I wonder how you solved the previous question: Did you just guess the solution in the answer box, or verified it?
- JDeVillar
  Bronze I
  2 months ago
  I saw that admin was mentioned in the Briefing so I used that
- wakedd
  Bronze II
  5 months ago
  I actually looked at the robot.txt file and saw the /admin page listed in there
  - netcat
    Silver III
    5 months ago
    Aren't you curious to see what is forbidden for robots?
TillyCorless
Community Manager
6 months ago
Thanks wakedd

I've passed on your query internally for a possible tip, however if in the meantime a fellow community member can offer any hints, please do!
- JDeVillar
  Bronze I
  2 months ago
  Is there any answer for this one? TillyCorless ??
  i have to complete this course and cannot log in as Admin and there is no instruction for how to
TillyCorless
Community Manager
6 months ago
Hi wakedd, can you share the full lab title with me please? I think you're referring to Intro to Web App Hacking: Dirbuster - Custom Headers, but can't be sure.

Thanks!
- wakedd
  Bronze II
  6 months ago
  Intro to Web App Hacking: Mapping Web Applications
  - xchenoh
    Bronze I
    26 days ago
    Log in with the "admin" account listed on the /admin page. Then the token will be directly displayed to you

Featured Places

Help & Support Forum