As of 03/04/2026 (or if you’re in the US, 04/03/2026, damn that’ll never stop confusing me) this lab came back into rotation. I was going to record a video, but 404yeti from the bugforge community kindly recorded and shared his solution, so I am adding this to my old writeup on this lab. Here goes:
If you wish to follow my writeup, continue below. Otherwise, thanks 404yeti for the video walkthrough!
Step 1: Register & Upgrade
Immediately after registering, I was drawn the the “Upgrade” button on the top menu bar:
If you follow the request you’ll see it leads to /api/upgrade and passes a json body with a role of “insider”:
Step 2: What if we try administrator?
If we send our request to repeater and send it on its way, we get a success message and we get provided a new token:
Take the token, send a GET req to /api/admin/flag and you’ll see the flag in the response:
Thanks for reading!
