Target from: CTF Beginners

Basic, Non rootable

juggling-flea / 10.0.41.14

1: Flag (app)
1: Service
300 pts

Juggle your way around and see if you can make me validate...
#headshot

Level 6 / Securitas

ulandave / 508th Place

1: Flags found
1: Service discovered
300 pts
29 minutes

No bio...

This API changes password with every request, see if you can find a way to authenticate successfully. There is no need for brute-forcing the authentication with random passwords. However, you may have to try a couple of times the same authentication to get it working... Even if the password is just 1 digit!!!

To start the challenge connect to http://10.0.41.14:1337/. Your timer starts from the first time you connect to the service.

214 Headshots (newer first)

ulandave, dungcngo, IArstuk, seed, nirvana96, SDKk, segfaults, 0nyx, sudozer0day, NegaRequiem, RenDankill, n3thacker, zabubu, kuwguap, okias, horlali, muskslayer, roronoazolo, 00DEADC0DE00
Netrunner, N30HxDAEMON, Panda00, kevin2758, mikehawk, hocrux, warrior32, Bizbihackers3, JuanPablo23ag, Akkher, keita15, CASTIxm20, ElGuzmi, zlykh, CWIJK, FrankX12, C3r0d4y, termina1, PadillA, PR4NKSTR0, DARKZEUZ, rid1337, ETH3RNAL, m4iev, St4lkc0r3, M4ng0, Sadko, BigNull, MrchomLee, hunter, GerardoRiv10

2 Writeups by:

sirEgghead (en) 4 - Well writtenKall (en) 2 - Nice

Activity Stream

Latest activity on the platform

ulandave managed to headshot [juggling-flea], 6 days ago
ulandave Got the flag from the juggling-flea for 290 points, 6 days ago
ulandave Getting started with the juggling-flea for 10 points, 6 days ago