Unsecured Login
[PCAP]
Unsecured Login
We caught someone logging into their website, but they didn't use https!
Recon
tcp.stream 1, packet 48
contains:
HTML Form URL Encoded: application/x-www-form-urlencoded
Form item: "user" = "admin"
Key: user
Value: admin
Form item: "pass" = "flag{n0httpsn0l0gin}"
Key: pass
Value: flag{n0httpsn0l0gin}
Flag
flag{n0httpsn0l0gin}