HackTheBox Web Lernaean Challenge

Challenge By : Arrexel

Challenge Description :  Your target is not very good with computers. Try and guess their password to see if they may be hiding anything!

Points : 20

Author : Rehman S. Beg (HTB Profile : MrReh )


Lets start the Instance, we see Administrator Login Page ask for password and hint statement is “Please do not try to guess my password!”

So here we can BruteForce login and grep the password

So we got the password and looks like we still have to work more. At this point we intercept the request with Burpsuite and send it to repeater in respons Source code we got the flag

FLAG : “HTB{l1k3_4_b0s5_s0n}”   

Leave a Reply

Your email address will not be published. Required fields are marked *