Repeating web requests

I’m in Hack the Box academy, in the web proxies module. I’m really stuck on changing directories and getting it to show in the browser or in burp.

I feel like I understand the material, as far as what I should be doing, but I’m kinda stuck on how to get the directories to show, and finding the 2nd flag.

Hey,

My hint is you can use the ‘ls -a’ and ‘cd …’ commands to go to previous directories and view the content.

I had the exact same problem and was stuck for a while until I thought about these two commands. I used them in the Burp repeater and was eventually able to find the directory with the other flag inside.

1 Like

Hey man I think this part in the module has a bug I’ve literally tried everything for the past 4 days and it’s not working. I fully understand what’s being asked and I have experience using Burp. It will not let me change directories it’s annoying at this point.

I answered this on another thread, but you don’t need to change directories. You just need to view what is in the other directories ls will work until you find the path you need to use to cat the flag

don’t forget to use ls -la for your own sanity.

just ls root dir and cat the flag

I’ve tried everything: ;ls -la; or ;ls -a; … even tried to cat flag2.txt but I cant get flag # 2. Can someone please help? Thanks!

don’t waste your time with the ls command or searching…trying to find the magic directory or change directories.

use the find command
find /* -name flag.txt

then cat the output

use the find command
find /* -name flag.txt

then cat the output

Thank you!!

1 Like