Try to login. After successfully logging in, pls check all information carefully to get flag.
II. Solve:
- I used sqlmap to attack sqli and I got information about username and password to login website.
- Continue, I have to login the website and I used http header live to capture the header responses.
- I saw Cookie's header very strange. If you notice, this website is based on Flask. So, this cookie was created Flask's Cookie.
- I decoded this cookie and I saw the Flag.
Thank you very much.:D :D :D
