Type your comment> @Cli3nt said:
> How do you get the credentials for this c********? Brute Forcing with Burp already, but without success.
> Since there is no need to brute force, I wonder how to find out the credentials.
i writed script to bruteforce the login page and got the password but i would like to know how to bruteforce the api part i dont know what data to send ( I tried ad***=&pass***=) but it keep saying unauthorized
i was at same boat with you first i learned some sqli then webapp vuln (LFi , RFI ,CVEs) then the real shit begin once i created HTB accounts and i always keep asking for help and keeping notes till i built some knowledge, and IPPSEC was my sensei I…