Abusing HTTP Misconfigurations

ej0573208 · November 23, 2023, 9:19pm

Abusing HTTP Misconfigurations Skills Assessment - Easy anyone to help me i can’t bypass the password reset function

ej0573208 · November 24, 2023, 5:42pm

++++++++++++++++++ please anyone to help me

cherryeater · November 25, 2023, 9:12am

Hi!
Did you follow it?

ej0573208 · November 25, 2023, 3:38pm

okey i figured it out i am in hard skill assesment

blizco · December 18, 2023, 9:42am

I’m stuck on the easy skills assessment. I don’t get your hint. I tried to open 2 tabs in Firefox (with and without Burb etc.) and tried all the possibilities. No success.

krellkrypto · January 17, 2024, 6:52pm

For future people looking. You will need to login with the given account. There is somthing you can interact with on the site that will allow you to puzzle the session varible correctly

chempenois · January 4, 2025, 4:33pm

I found several extra endpoints on the website and tried to use them, bypassing the default page. That is, I would complete the first step of reset or register, and then copy a non-default page url into the browser. However, this was to no luck and would go back to login. Was the useful thing on the signed-in version for the website not an endpoint?

chempenois · January 4, 2025, 8:47pm

K I figured it out. The advice on having two tabs open was good. A user must be logged in while the login forms are being manipulated.

Topic		Replies	Views
Abusing http misconfigurations Academy	22	1955	March 20, 2024
Abusing HTTP Misconfigurations Academy	4	528	December 16, 2024
Abusing HTTP Misconfigurations - Hard Skills Assessment Academy	0	86	July 13, 2024
Academy web attacks skill assesment	0	435	September 10, 2022
Web Attacks - Skills Assessment Academy	30	4475	February 1, 2025

Abusing HTTP Misconfigurations

Related topics