Fuzzy [Web]

Found the parameter… Now hunting for valid values

hmmm not sure what to do with the file now that I have found it…

I finaly flagged it !
It was a nice training for wfuzz after all :).

All you have to do is to find the good wordlists and fuzz multiple time.

am I on the right track by looking at something the has not been set?

@MrNo

Yes, wfuzz it!

Just completed it.

Happy to assist if needed.

Yep, I’m done too!!!

I just found the right parameter but is there more than one by any chance?

@n3m0 said:

I just found the right parameter but is there more than one by any chance?

nv got the flag…guess its just that one parameter : )

Still stuck trying to fuzz the param, any tips?

@GibParadox saved me from myself

just completed, had a lot of funzz! thx for the challenge @Arrexel !
if anyone feel stuck and need a little nudge PM me

A good challenge, thanks to @prdcsm for hint and thnx to @Arrexel for making it.

Jeeze, def do not overthink the fuzz wordlist. Don’t be me with a 10 million line count wordlist. KISS

Challenge complete.
Simple challenge yet still taught me a thing or two. Thanks @Arrexel.

You can do the entire problem with wFuzz. You need to fuzz for a parameter and then for a value.

it is necessary in this challenge not to fuzz unnecessary

Type your comment> @will135 said:

wfuzz with a big wordlist. Remember to try different extensions too!

I have been trying the wordlists in SecLists couldn’t find anything! point me to something…
:confused:

wfuzz with a big wordlist.
I have been trying the wordlists in SecLists couldn’t find anything! point me to something…

In my experiments I used Kali built-in wordlist and all fuzzed well.
The sense is to choose correct point for Fuzzy.