Skip to content

Ritwik82/out-of-syllabus

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Out of Syllabus: Voyager-X

A "Black Box" IDOR (Insecure Direct Object Reference) challenge designed to test traffic analysis and fuzzing skills.

🚀 The Mission

You have gained access to the Voyager-X data terminal. However, the front-end interface is hardcoded to only display public system logs.

Classified information is stored somewhere within the satellite's object data store. Your mission is to find the flag: LNM{H3110 ;)}.

🛠️ Requirements

  • Node.js (to run the challenge)
  • Caido (or Burp Suite) for intercepting and manipulating traffic.

🏁 Objective

  1. Launch the server (node server.js).
  2. Intercept the background API requests using Caido.
  3. Identify the vulnerable parameter.
  4. Exploit the IDOR vulnerability to retrieve the classified flag.

🧩 Hints

  • The UI is just a distraction; the truth is in the traffic.

About

LNMIIT Plinth – CTF Challenge

Resources

Stars

0 stars

Watchers

0 watching

Forks

Releases

No releases published

Packages

 
 
 

Contributors