Description: Want to hear a joke? Want the flag? How about both? Why don’t YOU tell me a joke!
We reach a login page and attempt to login as any user, it seems any user is accepted. So logging in as “lmao”, we receive this message:
The interesting piece of information we get is a cookie, most notably a JWT, that when decoded, gives this:
A few interesting information in the headers that are not commonly noted are:
jku (JWK Set URL) and kid (key id).
Now we notice that jku is used in localhost, so if we browse to the challenge/static/jwk.json, we receive their signing algorithm:
If we have this, we can forge our own JWK on our own web server and create our own public/private key as well as modify the payload. So to do that, we start by creating our RSA key pair:
We notice in our given JWK that “e” and “n” are defined, so to extract “e” and “n” from our public key, we use a short python script:
Next we have to convert our “e” and “n” to base64 since that is the format we received from the challenge.
Using this information, we add this to our “e” and “n” in our forged JWK:
Adding all the pieces together, we use our private and public key for generating and verifying our JWT respectively. Then we modify our payload to the requested “admin” as well as use the JKU header to include our own web server URI with the forged payload:
Now replacing the cookie on the challenge with our new JWT token, we receive our flag: