Description
Try here to find the flag
Steps Taken
- open webpage in through burp suite intercept
- complete login information
- when asked for the 2auth code put what ever
- before sending the request modify the ‘otp:’ to something like ‘osp:’
- Flag: picoCTF{#0TP_Bypvss_SuCc3$S_3e3ddc76}