figure out pattern in session, found /admin and /server-status, got admin user name and admin ip, construct session.

Original writeup (http://www.blue-lotus.net/29c3ctf-web300-pwsafe-writeup/).