Skip to content

THM - Advent of Cyber 2022 - Day 14


Difficulty: ⭐
Challenge Link
OS: Linux

Learning Objectives

  • Web Applications
  • The Open Web Application Security Project (OWASP) Top 10
  • IDOR

What is the office number of Elf Pivot McRed?

We can start the machine and navigate to the IP in Firefox. We can sign into the web app using the credentials provided. Looks like each person is tied to a 10#.html page. So we can increment some until we hit McRed.

Answer
134

Not only profile pages but also stored images are vulnerable. Start with a URL of a valid profile image; what is the hidden flag?

We know what the page for McRed was valid. So we can right-click on the image and follow it's page. We can try to do a similar thing as before and increment the image #s. Bingo!

Answer
THM{CLOSE_THE_DOOR}