Loading page
Review the challenge brief, files, and requirements.
Analyze these Apache logs to find the attacker's IP and the vulnerability being exploited.
192.168.1.100 - - [15/Jan/2024:10:00:01] "GET /index.php HTTP/1.1" 200 1234
192.168.1.50 - - [15/Jan/2024:10:00:05] "GET /admin/login.php HTTP/1.1" 200 567
192.168.1.50 - - [15/Jan/2024:10:00:10] "POST /admin/login.php HTTP/1.1" 302 0
192.168.1.200 - - [15/Jan/2024:10:00:15] "GET /?id=1' OR '1'='1 HTTP/1.1" 200 5678
192.168.1.200 - - [15/Jan/2024:10:00:20] "GET /?id=1' UNION SELECT username,password FROM users-- HTTP/1.1" 200 9012
192.168.1.100 - - [15/Jan/2024:10:00:25] "GET /about.php HTTP/1.1" 200 2345
Submit flag as: FLAG{attacker_ip:vulnerability_type} Example: FLAG{1.2.3.4:xss}
Sign in to attempt this challenge.
Use Proving Grounds to continue your challenge practice.
Open Proving Grounds