The 4 is correct, worked for me. You can PM your flag chars (randomised if you want) and I could help.
Otherwise try again, the 1337 reads right to me.
Finally got it, whooa a lot of requests to be made. Be patient, if anyone needs help, DM me.
It will seem that the protection is not present till you get struck in errors
just use -v 6to see whats going on and see what was taught for such scenarios
see what is being send and recieved
For anyone who is still struggling: do not tamper with the POST request you get. Save the original one and use it with -r switch. Everything from then on should be straight-forward. If it’s not, something is wrong with the request. I tampered with it and made me absolutely crazy not being able to figure out what’s wrong and how to fix it.
Here are some tips to keep in mind:
-
Take things one step at a time and don’t try to apply all the hints and tips at once.
-
If you find yourself struggling to make progress, ensure that you are executing the hints in the right context and with the correct command.
-
If you can’t seem to make any progress, start from scratch and begin with the basics.
-
Remember that the two most important things to keep in mind are the techniques and the tamper option.