IntroToBurp | PicoCTF | Web Exploitation | Writeup

Momal Naz
Oct 28, 2024

--

Challenge Name: IntroToBurp

Level: Easy peasy

Category: Web Exploitation

So Let’s begin the challange!!!

When we open it by clicking on the box, it will appear as seen below.

Start the Launch Instance to activate the Challenge!

Once you click “Launch Instance,” a countdown will appear along with a URL that will open when you click “here.”

Given Link with the Port Number

To complete the registration, enter any information here and click Register.

NOTE: Copy the URL and paste it into the Burpsuite browser, making sure to leave “intercept on.”

Click forward button until get a 2Fa authentication page

Naaahhh! Maaannnnn! Simply be sensible. You might wonder where we can obtain this OTP :)

Guys, don’t worry; this is an easy trick. Simply enter any number in the two-factor authentication, as indicated below.

“OTP=456” in the raw, select the otp and delete the line, then click on forward.

we can easily obtain the flag as indicated below following this.

Thanks!!!

--

--

Momal Naz
Momal Naz

Written by Momal Naz

Bug Hunter | EHE Certified | CNSP Certified | Jr. Penetration Tester | OSINT Enthusiast

No responses yet