Tuesday time and it’s time for more THM!
Today we start off with the NoSQL Injection room as part of the Web Application Pentesting pathway.
We find that John’s password is eight characters in length and starts with a number
John’s password consists of only numbers and is 10584312
pedro:coolpass123
Flag – flag{N0Sql_n01iF3!}
Now we move on to the XXE Injection room on THM!
Flag – THM{1N_b4Nd_1$_34sYY}
Flag – THM{0O8_xx3!!}
Until next time & don’t sleepwalk through life!
Atsisveikink