Giskard - Email Assistant (Level 3)

Link to challenge

Instructions

Resolution

As this is an agent it might have access to an api. So I asked if it had access to an API and it said yes. SO then I asked it to list all the api actions and I got the send_emails action.

So I asked how it would use the api action to send email and I got this answer:

For some reason I am able to have it show a post request with the api action, but it does not validate the challenge. It means it considers the email is not sent:

PreviousGiskard - Email Assistant (Level 2)NextVulnmachines Writeups

Last updated 1 day ago