Web - Client

Hi all,

I tried several ways. There is mount point for injection on the first page and i found one more on another page. I have seen the cache and how to refresh it, but the thing is when i inject the code i get still redirect page. I tried also request smuggling and i do not think it can be used for. But on one thing i am sure i got the web server’s name and so on. There could be something useful when i try to fuzz other parameters which might be hidden to inject directly something, we call good code. I don’t know. Are there any hints. i know it is not much i found out. Is there anybody.

Thx for fuzzing the screen overloaded.

Use python with requests library for this challenge. I had a lot of problems trying to solve it with a browser.

Hi,

Well, i tried python as well, but in my opinion burp does its job perfectly. Good advice for the class mates who are new in this task.
Additionally i manipulated one more request header. If it could be possible to forward this manipulated response header while being redirected to the page which is officially caching, then the task can be completed without headaches. I do not think request smuggling is for need, but i am still researching. By the way it is more possible that the way to solution is easier than you think back.

See u soon,
Thx for feedback, Th1b4ud..

Hi,

Obviously there is a request smuggling for need, so i think for now. I practiced a few chances. I had good luck once. Well, the problem is while making http responses together, the caching works till Content-length. I must find a way to make them unique, so when i refresh the cache things are bound to each. I am trying harder, but i do not see any other hurdles to make more fun out of this task. I hope the help comes to mates interesting. Hope to write more stuff about step stones.

Thx for snoring,
i will tell more later on.