Web request - get

I will put this here just in-case anyone needs it, i had quite sometime finding the flag. here’s a tip to solving this question,

The exercise above seems to be broken, as it returns incorrect results. Use the browser devtools to see what is the request it is sending when we search, and use cURL to search for ‘flag’ and obtain the flag;

when using curl to search for ‘flag’ to obtain the flag, we do;

└─$ curl ‘’ -H ‘Authorization: Basic YWRtaW46YWRtaW4=’ -i -v

this gives you the flag.
cheers :hugs: i hope to post more help, as i can .


curl http://admin:admin@\?search\=flag -vvv works too

Hi mate

I tried both the curl you said not seem to have any luck. Just wondering what i am doing wrong as have it like this.

curl -H Authorization: Basic YWRtaW46YWRtaW4= -i -v

curl http://admin:admin@

Many Thanks


Worked for me=== curl http://admin:admin@\?search\=flag