QUESTION 4 (25 marks)#
Target URL: http://TARGET_IP:35353
Use credentials: student:student
a. How many posts were created in the month of March by the user with the username
capybara? Include screenshot(s) and explanation(s) of your steps and tools used.
The first picture shows the new post pages. I submitted 3 test posts, as we see that they appeared with IDs 35820, 35840, and 35860. This tells us that post IDs increase in steps of 20.
I first tested post IDs in the 35000 range. That gave posts at the end of March.
Then I checked the 34xxx range and saw posts from February. So the valid ID range is likely from 34000 to 35900.
First I tried IDOR in the 35000 range, but that gave us posts from the end of March.
Then I tried 34xxx, and saw posts from February. Since we know it jumps in steps of 20. we can try all payloads from 34000 to 35900. Our test posts are 35820, 35840 and 35860 and we can assume it would not be greater than that.
Using Burp Suite Intruder, I tested post IDs from 34000 to 35900 in steps of 20. I filtered responses that contained:
Author: capybaraMarch
This gave me exactly 10 posts by capybara in March.
Note: We have to check that the March label referred to the post’s creation date, not last-updated. (we could use regex to search for this). However, this was not relevant in this case.