This exercise explains how you can tamper with an encrypted cookies to access another user's account.
What you will learn?
- Weakness in ECB encryption
- Cookie tampering
- A computer with a virtualisation software
- A basic understanding of HTTP
- A basic understanding of PHP
- Yes, that's it!
- ecb.pdf (581K)
- ecb.iso (64-bit, 173M, MD5: 9f94722b54db74133318e24cc0e116dc)
- ecb_i386.iso (32-bit, 169M, MD5: a7114704fe356b9538dab4e2274f7981)
In the ☁
During our beta, get access to this exercise for 2 hours for only $7, the environment is not shared and you got plenty of time to complete this exercise.