@CADMUX said:
anyone can help me …i used a lot of tools also and some takes a huge time… i have a lot of trouble to bypass … plz help
I had the same issue where it was going very slowly, try changing the number of threads it uses.
I have managed to log in but im not sure what to do now (SPOILER)
! I see in the header that Etag:““cd-55532bfca8680-gzip”” and Accept-Encoding:gzip, deflate. What i understand from this is that there is a gzip file which i somehow need to request and it will download - how do i do this? any help please
Im stuck on this one. I have used Burp to force through every wordlist on Kali except ‘Rockyou’ with no luck. I have tried to load up ‘RockYou’ but it crashes Burp. Am I missing something here or shall I persist with a way to get ‘RockYou’ working?
Your command is a little off. You need to use the ‘-s’ flag to specify a port and you need another colon after ‘^PASS^’ for the fail case. It’ll look like “/:password=^PASS^:Invalid password!”
part my command isnt like by the tool, but I dont see what is wrong with it, all conditions appear to be present per its help file: -U http-post-form “/:password=^PASS^:Invalid password!”
I dont know why it is finding an additional colon after the !
Help for module /:password=^PASS^:Invalid password!:
The Module /:password=^PASS^:Invalid password! does not need or support optional parameters
Hey guys, I’ve gotten to the second part of the challenge and am pretty stuck. I understand that the next solution is with the ETag: “cd-55532bfca8680-gzip” . But I’ve tried Intercepting and changing the value and the If-None-Match value; I’ve thrown it in the Repeater… Not quite sure where to go next, still reading up on these parameters.