<- MISC

Emdee five for life

1 minute to read

We have this website:

Emdee five for life 1

It seems that we need to compute the MD5 hash of the string and submit it:

$ echo -n Vzf9GeB5zAFDZ2M3oKSa | md5sum  
c03463878fee34e249962c4aef9af84c  -

But we were too slow…

Emdee five for life 2

Hence we will need to script our solution in order to send the request as quick as possible. One important thing to keep in mind is to preserve the PHPSESSID cookie set by the server:

$ curl -I 134.209.187.167:31212/
HTTP/1.1 200 OK
Date:
Server: Apache/2.4.18 (Ubuntu)
Set-Cookie: PHPSESSID=474q2v5pq3sfhgtt9gcf7c5j40; path=/  
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Type: text/html; charset=UTF-8

Once we have a valid script that extracts the string, computes the MD5 hash and sends the POST request, we will obtain the flag:

$ python3 solve.py 134.209.187.167:31212  
HTB{N1c3_ScrIpt1nG_B0i!}

$ bash solve.sh 134.209.187.167:31212
HTB{N1c3_ScrIpt1nG_B0i!}

Both scripts can be found at: solve.py and solve.sh.