Unsecured Login [PCAP]
NeverLAN CTF 2020

Unsecured Login

We caught someone logging into their website, but they didn't use https!

https://ctf.neverlanctf.com/files/32e694973bb4976a1c26f3a9fdcf92f1/mysite.pcap?token=eyJ1c2VyX2lkIjo4NDUsInRlYW1faWQiOjQ5NCwiZmlsZV9pZCI6M30.Xj7qYA.-9drobfK1rtVIJD2Nur08kz26d8

Recon

tcp.stream 1, packet 48 contains:

HTML Form URL Encoded: application/x-www-form-urlencoded
    Form item: "user" = "admin"
        Key: user
        Value: admin
    Form item: "pass" = "flag{n0httpsn0l0gin}"
        Key: pass
        Value: flag{n0httpsn0l0gin}

../downloads/neverlan2020_mysite.png

Flag

flag{n0httpsn0l0gin}