PicoCTF Cookies ๐ช ( Web Exploitation )
Easy
This challenge focuses on the use and manipulation of web cookies.
Firsty click the link and access the webpage at http://mercury.picoctf.net:64944/
We can try entering a random cookie type to see if it generates a response.
Upon entering chocolate chip we get the following response.
Lets check the session cookies to see if we can gather some information.
Inspect -> Storage / Memory -> Cookies
We can see that the cookie has a value of 1, lets try adjusting the value to see if we gain a different response.
Adjusting the value as 2 gives us a new response with a new type of cookie.
Adjusting the value as 3 has the same output.
Lets try the cookie value as 30.
Using 30 as the value for the cookie gives us an error hinting that the valid numbers of cookies lie between 1 and somewhere below 30.
Trying 29 yeilds no resultย , trying 28 gives a response. Hence the flag lies somewhere between cookie value 1 and 28.
Cookie 18 contains the required flag.
Top comments (0)