9.1 Lab: Limit overrun Race conditions | 2023
This lab’s purchasing flow contains a race condition that enables you to purchase items for an unintended price. To solve the lab, successfully purchase a Lightweight L33t Leather Jacket
2 min readSep 25, 2023
Description
This lab’s purchasing flow contains a race condition that enables you to purchase items for an unintended price.
To solve the lab, successfully purchase a Lightweight L33t Leather Jacket.
You can log in to your account with the following credentials: wiener:peter.
IMPORTANT — Solving this lab requires Burp Suite 2023.9 or higher.
Solution
- Log In to your account using the credentials
wiener:peter - Add Lightweight L33t Leather Jacket to the cart
- Now Apply the coupon and capture the request on Burp
- Now send it to the repeater and turn off the Intercept
- Now click on the request and send it again to the repeater itself 27 times totally
- Now Right Click on any tab then click > add tab to group > create tab group
- Now Select all 27 tabs and Create it as a Group
- Now, go to the browser and remove any existing coupon code
- On the Burp repeater, right-click send and click send group in parallel
- Now, Check on the site, your coupon code will be reduced high
Incase of Queries, ask me in the Comment
If you would like to support me so that I could create more free content — https://www.buymeacoffee.com/cyberw1ng
Thank you for Reading!
Happy Hacking ~
Author: Karthikeyan Nagaraj ~ Cyberw1ngTelegram Channel for Ethical Hacking Dumps — https://t.me/ethicalhackingessentials
