Step 1: Premium coffee
We’re back at the CafeClub and that can only mean one thing. We need to somehow get free coffee!
Step 2: Purchasing a gift card (or two)
I purchased a gift card for my account. $100.
So, here it is. My gift card. Looks fine, doesn’t it? Well, lets buy another to be sure.
So now I purchased a 2nd gift card. Ok. Now this is a little worrying. The only change is the final 3 characters (S + U + K). The rest is identical.
Step 3: Intruder
I created a 2nd account and purchased a $10 gift card, then sent it to intruder to tamper with.
I set my payload to brute force every alphabet character (after this screenshot I did change it to uppercase A-Z because I wasn’t sure if it was case sensitive. I should probably go back and check that too).
If the gift card is invalid, we can see it in the response:
Sort by the Status Code and you’ll get a 200 with a bug in the response. Unfortunately my machine rebooted and I lost my progress but the flag was in one of the responses. Proof:
P.S
The idea for having the list of names who had completed the labs was my idea and implemented by arlix, so shoutout to arlix! I think it looks great! Better than I imagined!
Thanks for reading!
