Just wondering if I could get a nudge with the mango box. So far, I've reached the login page but I'm struggling to get past it. From reading the forum I assume that the back-end is using MongoDB(?) and I've read Payloadallthething's information on NoSQL injections. Are we supposed to be extracting the usernames and passwords from the db via injection or are we supposed to bruteforce?