URL: https://lab01.sqrsec.com/

Difficulty: Medium

Notes:

  1. No password/account bruteforce is needed!

  2. XSS is out of scope

  3. Only the web interface port 443 is in-scope

Objective

  1. Retrieve the 3 Flags

  2. The flags are in a format similar to SqrSec Flag : UUID