🎃 Spooky SSC CTF 🎃

🍪 Cookie Monster

Cookie manipulation can lead to session hijacking and privilege escalation. Can you exploit this vulnerability?

Your Mission: Manipulate cookies to gain admin access!

Challenge: Manipulate cookies to gain admin access and find the flag!

💡 Challenge Overview

Goal: Manipulate cookies to gain admin access.

Difficulty: Intermediate - Session management!

Time to complete: 5-10 minutes

Key Learning: Cookies can be manipulated for privilege escalation!

🍪 The Cookie Monster

Cookies store user session information, but they can be manipulated to gain unauthorized access. This challenge shows how cookie manipulation works!

🛠️ How to Solve This Challenge:

Open browser developer tools (F12)
Go to the Application/Storage tab and find Cookies
Look for session cookies - usually named 'session', 'user', 'admin', etc.
Modify cookie values - Try changing values to 'admin', '1', 'true'
Refresh the page and look for the flag

🔍 What You're Learning:

Cookie Security - How cookies work and can be manipulated
Session Management - How websites track user sessions
Privilege Escalation - Gaining higher access levels

🍪 Cookie Manipulation Tool

Use this tool to manipulate cookies and test the vulnerability!

Cookie Name:

Cookie Value:

🔍 Cookie Attack Vectors:

Change user role from 'user' to 'admin'
Modify session IDs
Set malicious cookie values
Bypass authentication cookies
Session fixation attacks

🏁 Submit Your Flag

🏠 Back to Main Page