Metadata
- Platform: HackTheBox
- CTF: Headless
- Difficulty: Easy
Summary
Solution
Reconnaissance
Nmap
- SSH on port 22 (Debian)
- HTTP on port 5000 (Python), sets Base64 cookie called “is_admin”
The cookie seems to be signed and not changeable
Gobuster
Port 5000
/contact page has input fields.