 Okay, this is a video write up for the problem of request me for 30 points on TJ CTF recent capture flag competition It was a web challenge got 154 solves not that many and I think that was because so many people got frustrated with this challenge It was kind of a guessing challenge. I think I don't know really if that's fair for me to say and it's you know It seemed to be broken for a lot of the competition I think the organizers kind of had to fix it and change some of the request responses, etc Because and no one was particularly happy with it. I think some solutions would work for some of the time and then it would just simply not Sometimes it would work sometimes it wouldn't because things did not seem to be Working the way that it should have so okay I tried to showcase what the challenge originally did once you took a look at it It a simple get request will give you the wrong flag with a let me Google that for you notion So let's take a look at some of the other possible HTTP requests. We can do let's copy the link hop over to a terminal and In that directory because I like to make directories for every challenge We can go ahead and curl the link for it It tells me wrong flag and gets again giving me that LMG TY Because that is the get request that I tried to do if I wanted to change the method here I wanted to say let's try and run options just like it said we can see what options We potentially have we can run get we can run post we can run put delete and obviously options Just we just did so let's try and see what post will do It says it may actually need username and password. Okay, so let's go ahead and give it some of those we can pass in data username can equal Credentials here and there's no notion as to what credentials could possibly be used So I think some people tried the low-hanging fruit basic easy stuff We even went to some lengths as a try with Hydra, but it seems that the real solution was admin and admin So you can kick yourself over that if you're if you're angry, although that didn't work for us So let's try some other ones. I actually moved over to just try to use the put option and That said, oh, I stole your credentials. Okay, peculiar. Don't know what that means. It looks like we were able to supply it That's fine. Let's try and run Delete Because I know that was another option that we could use here and that says oh could not access your level for that You got a login with proper credentials. The other notion up here It says some methods require HTTP basic auth and I think that is the case with the delete options So let's actually add that to our credentials here We can use tack you with curl and we can specify like username and password as colon colon So that we should just run that My terminal kind of got screwed up in the display there So if you want that full thing, it's just tack you admin colon admin and it gives us finally the flag is TJ CTF Why are there so many options? So I never really entirely understood this challenge I think when I discussed with organizers and I tried to show them my script because I did this in Python for the real thing I was they said there's a certain order. You can go through some of these in I think you have to actually give it the credentials before you run delete You have to yeah, you have to run put or post on there before you get some of those So it acts very strangely, but I think that order should be put and then delete So if I change this to run put first, it says I stole your credentials. That's a new message It did not originally have that which again was kind of a strange gap Looks like delete didn't work with that. So maybe we want to run put post and then delete Again very very strange some guesswork in this case post whatever And then delete maybe No, okay Post put and then delete again. They told me it was some order that we needed to run and I got it kind of at one point eventually just developed a script that would get it constantly But it's very fragile and odd and I was unsure what they wanted there maybe post put and then delete But I just kept requesting it tried those different options and bang my head against the wall long enough that I got that so Again, I'm sorry if you're kicking yourself over this, but that was the solution for this challenge I hope you enjoyed watching this video and I hope to see you in some more I want to give a special shout out to the people that support me on patreon These individuals are phenomenal. Thank you so much $1 a month on patreon will give you a special shout out just like this at the end of every video $5 a month on patreon will give you early access to everything I'll release on youtube before it goes live If you did like this video and you want to see more capture the flag video write-ups programming tutorials other stuff that I do Please do like comment and subscribe join the discord server link in the description Awesome cool people community there totally hang out with us and play some ctf games. Hope to see you on patreon Hope to see you in the next video. Thanks