Check out our new cloud service, Authentication Anywhere. Can you find other user’s secrets?
Hello. Another easy room to complete. The neighbour is a ctf from tryhackme.com. Link to the ctf is https://tryhackme.com/room/neighbour. This ctf is about idor. I believe it’s quiet easy. Let’s go!
I immediately browsed the ip address. And a login page greeted me.
I inspected page source code. And there was some credential for guest users.
Let’s login using these credentials.
We can see this page after the login.
Do you see anything interesting in this page?
Let me show you!
It shows us our profile. We logged in as guest user. What if we just change it to something else like ‘admin’. Let’s try!
There we go! We have our flag.
