Course

In this exercise, you start by logging in as `user1`, at which point you receive a cookie named `user1` from the server. The challenge is to change the value of this cookie to log in as the `admin` user. There are multiple techniques to modify the cookie, such as using browser developer tools, extensions, or a proxy.

Inspecting how a website handles authentication tokens is crucial. Whether the website uses cookies, sessions, or headers, understanding the token's structure and behavior can reveal vulnerabilities. In this lab, altering the cookie value to impersonate another user demonstrates the potential weaknesses in the authentication process.