Challenge Web: Grammar

MrWheatley · December 2, 2017, 4:51am

I have been attempting to solve Grammar for 3 days now and its starting to feel like I’m banging my head against a wall, and given that this challenge does not involve biometrics I don’t think that is going to get me anywhere…

I’m currently stuck, and my assumption is I have to do something with the MAC value, but I do not at all understand how its calculated.

Any help would be much appreciated.

peek · December 2, 2017, 10:22am

dont overthink

MrWheatley · December 2, 2017, 3:15pm

I’m not sure I can do anything more simple than what I have already tried. I’ve tried changing field 1 and 2 individually as well as together and making new requests. I’ve been able to get the messages “what are you trying to do?” And “you have fucked something up” but not much other than that.

MrWheatley · December 3, 2017, 3:58am

Still grasping at straws. starting to work in circles. Any help would be appreciated.

netarg · December 5, 2017, 9:19am

“you have fucked something up” is the server’s message for it can’t decode your cookie properly - so that won’t work. Play more with the “what are you trying to do?” requests. You only need to change two parameters, keep the one that doesn’t matter default.

MrWheatley · December 5, 2017, 1:36pm

I’m presuming the one that doesn’t matter is pretty obvious. Still not sure what to do about MAC. Thanks for a little direction tho.

dotan3 · December 20, 2017, 1:14pm

I have started a script to brute force the MAC based on original data to try and know how it’s calculated, is that an interesting target to pursue?

act1on3 · December 21, 2017, 2:23am

hi all! you need to know about “juggling”
interesting challenge

dotan3 · December 21, 2017, 10:00am

Oh thanks!! Took me a while to understand what this juggling was all about but the context of this challenge made it obvious in the end: PHP, MAC, juggling…

Fun challenge!

unashamedgeek · January 22, 2018, 6:46pm

Anyone still working on this that wants to discuss it? Message me

MackyNous · March 14, 2018, 8:05pm

Can someone PM me that finished the challenge?

fcafra · April 13, 2018, 2:58pm

Hi at all, I passed the first step easily but I’m still and I do not understand the next step. Can I have an hint please ?

aspire · April 26, 2018, 3:17pm

Hi - stuck at the first stage of this attack; used tools to search for open directories and file names - hydra, dirb, dirbuster and a ton of lists - am I right to search of an open file/dir to get to the next level - pm/email to avoid spoliers – thanks, this is a head bang for me now…

midi · May 26, 2018, 4:40am

Man this was a tricky challenge. The first step seemed kind of silly but the next step was great! Ok to DM me if anyone hits a wall and needs a sanity check / guidance.

varlynx · July 4, 2018, 11:42am

hey any hint regarding the MAC part would be appreciated

mhmahim · November 20, 2019, 4:28pm

i don’t know how to solve the problem … please send me message who can help me

Topic		Replies	Views
Grammar Challenges challenge , grammar	163	32983	November 19, 2019
Grammar Challenges grammar , help-me , private-message-n00b	8	920	May 29, 2020
Grammar Challenges grammar	0	438	November 30, 2018
Is my Grammar correct? Challenges grammar , juggling , magic	2	1215	February 5, 2018
Need Help with Grammar Challenges challenge , grammar	3	783	September 11, 2018

Challenge Web: Grammar

Related topics