Planet DesKel

DesKel's official page for CTF write-up, Electronic tutorial, review and etc.

30 August 2020 write-up: old-1

Link point tag
old-1 200 Session hijacking

Hello there, today we are going through a simple session hijacking challenge on


By looking at the given source code, the default ‘user_lv’ cookie is set as 1. To solve the challenge, we have to change the value in more than 5 (>5) and less than 6 (< 6).


Putting value 5.01 to ‘user_lv’ cookie and refresh the page solves the challenge.



tags: - session_hijacking

Thanks for reading. Follow my twitter for latest update

If you like this post, consider a small donation. Much appreciated. :)


© 2020 DesKel