Info 📜:

This lab stores the user's password hash in a cookie. The lab also contains an XSS vulnerability in the comment functionality.

Goal 🎯:

To solve the lab:

• Obtain Carlos's stay-logged-in cookie and use it to crack his password.
• Then, log in as carlos and delete his account from the "My Account" page.
• Your credentials: wiener:peter
• Victim's username: carlos

How to Solve the Lab 🛠️

This lab contains an XSS vulnerability, and we need to steal the cookie. Here's the step-by-step guide:

1. Login with our credentials 🔑
   • username: wiener
   • password: peter
2. Go to Burp Suite > Burp History > Request with POST Method and Login 🔄
3. Send the request to Repeater 🔄 and send the request.
4. Take the cookie in the stay-logged-in header and copy it. 📋

1. Take the cookie in the stay-logged-in header and copy it:

   d2llbmVyOjUxZGMzMGRkYzQ3M2Q0M2E2MDExZTllYmJhNmNhNzcw

2. Use Burp Suite's Decoder 🔍 to decode the cookie with Base-64.