IKnowMag1k (Web)

Boakill · March 31, 2018, 6:33am

Hey guys, I’ve been playing with this one for a bit and I have found myself stuck. I have tried the…

! padding attack
but I place the “Encrypted value” in for the cookie, it takes me to a black profile. I then ran it through Burp Suite’s Intruder feature using the bit flip, each cookie still sent the request back to my profile. Any hints or ideas of where I am messing up at?

My command:

! $ padbuster http://88.198.233.174:45812/profile.php LF8ciWB9XXLHhDKwITFlCmJk8bOGby99bGUqc3F5iAZHBrdpu/mMMg== 8 --cookies “iknowmag1k=LF8ciWB9XXLHhDKwITFlCmJk8bOGby99bGUqc3F5iAZHBrdpu/mMMg==” -plaintext “user=admin”

MinatoTW · March 31, 2018, 7:15am

First decrypt it completely and get the plaintext and then try to manipulate the cookie based on that.You can’t just add -plaintext ‘user:admin’ without knowing how the cookie looks like.I’d suggest you watch ippsec’s video on Lazy to get a better understanding of what I’m talking about.

panafana · May 21, 2018, 1:31pm

I did find the correct syntax after decryption of the cookie but it still takes me to the profile page of the user i created.

panafana · May 21, 2018, 1:49pm

I did end up finding it. Just messed a bit with the command and it worked :lol:

Topic		Replies	Views
Help with I know mag1k Challenges hint , challenge	18	2695	July 14, 2020
Need help with I know mag1k Challenges	23	4886	January 15, 2019
I need help with "I know Mag1k" Challenges web , help-me , i-know-mag1k	0	727	February 23, 2019
WEB Challenges (I know Mag1k) Challenges challenge , web , challenges	7	1454	July 3, 2020
[Web] I Know Mag1k stuck at decrypt Challenges web , challenges , iknowmag1k	0	541	November 9, 2019

IKnowMag1k (Web)

Related topics