-
Nmap Free Security Scanner, Port Scanner, & Network Exploration Tool. Download open source software for Linux, Windows, UNIX, FreeBSD, etc.
#Security #Security Monitoring #Monitoring Tools 187 social mentions
-
JSON Web Tokens are an open, industry standard RFC 7519 method for representing claims securely between two parties.Pricing:
- Open Source
Now as you can see, we are successfully logged in. So lets take our jwt and try decoding it using [jwt.io](https://jwt.io/).  So I decided to use the ```none``` alg technique. I tried with ```none``` , ```NONE``` and ```None``` but they didn't seem to work. --- With this tecnique failing, I had to think of another way. After a long time of research, I figured out that there were two hidden file in the download folder ```.env``` and ```.git``` . I just came to my mind that there must be something interesting there, since even the challenge name is ```secret``` . --- I started with the ```.git``` by looking at the history by running ```git log``` command.
#Identity Provider #Identity And Access Management #SSO 276 social mentions
Discuss: HTB SECRET
Related Posts
5 Best Virtual Private Network (VPN) in 2022
saashub.com // almost 2 years ago
7 Best Container Security Tools & Solutions 2022
enterprisestorageforum.com // over 2 years ago
The Top 5 Open Source Vulnerability Scanners
vulcan.io // over 2 years ago
Ten Best SonarQube alternatives in 2021
duecode.io // over 2 years ago
Top 11 Identity & Access Management Tools
spectralops.io // over 2 years ago
Best identity access management software 2022
zdnet.com // almost 3 years ago