THM - Advent of Cyber 2022 - Day 14¶
Difficulty: 
Challenge Link
OS: Linux
Learning Objectives¶
- Web Applications
- The Open Web Application Security Project (OWASP) Top 10
- IDOR
What is the office number of Elf Pivot McRed?
We can start the machine and navigate to the IP in Firefox. We can sign into the web app using the credentials provided. Looks like each person is tied to a 10#.html page. So we can increment some until we hit McRed.
Not only profile pages but also stored images are vulnerable. Start with a URL of a valid profile image; what is the hidden flag?
We know what the page for McRed was valid. So we can right-click on the image and follow it's page. We can try to do a similar thing as before and increment the image #s. Bingo!