JaWT Scratchpad

Web Exploitation - Points: 400

Check the admin scratchpad! https://2019shell1.picoctf.com/problem/12283/ or http://2019shell1.picoctf.com:12283

Login as arbitrary user and save the jwt token into a file. Crack the key with hashcat and the rockyou.txt wordlist.

$ hashcat -m 16500 token rockyou.txt

The secret is ilovepico, create a new token with user admin and the secret, e.g. here and update the cookie with the new token to get the flag.

flag: picoCTF{jawt_was_just_what_you_thought_9de8e25511a8841ab9ade0aa092be116}