Open Sesame | Bugcrowd CTF 2025
文章描述了BlackHat Bugcrowd CTF 2025中的一个挑战,通过Cookie Manipulation技术获取管理员权限以访问特殊笔记中的flag。 2025-8-9 05:32:47 Author: infosecwriteups.com(查看原文) 阅读量:17 收藏

Cookie Manipulation makes you Admin

SIDDHANT SHUKLA

Press enter or click to view image in full size

Open Sesame

Read for Freee.ee.ee👈

This is a CTF write-up in the series of BlackHat Bugcrowd CTF 2025, hope you have read other blogs in this series 👇

There are many upcoming Bug Bounty and CTF write-ups, so make sure to follow me.

Challenge Description

As per challenge description there is one special note that only Admin can access, so you have to be admin to access flag in notes.

I browse to the challenge link in my browser and noticed on there is mention of user id on the top of page.


文章来源: https://infosecwriteups.com/open-sesame-bugcrowd-ctf-2025-190f295ea1b8?source=rss----7b722bfd1b8d---4
如有侵权请联系:admin#unsafe.sh