Tags: web token 

Rating: 4.5

# Download me..

**Download me was a simple web challange.**

**We are presented with the file listing. One of the files is a flag.**


**It is also the only file we can't download as it is missing the token.**


**Tokens resemble some hashes so I upload them to the Crackstation for the verification. We get the confirmation for MD5 slong with the cracked values.**


**It turns out that the numbers corespond to the file sizes of the files. I proceed to writing a solver.**

## Solver

import requests
import hashlib

def main():
for i in range(1000):
payload = hashlib.md5(str(i).encode()).hexdigest()
r = requests.get(f'{payload}')
if 'AFFCTF' in r.content.decode('utf-8'):

if __name__ == '__main__':


## Output