The Breach challenge on WebVerse Labs exposes a GraphQL API backing a notes application. The notes are visible in the UI, but a GraphQL schema often has surfaces the front-end never touches. Map what's really there, and find a way to reach the flag.
Objetivo: Query the `flag` field requesting the `value` sub-field without any arguments and observe the server's response.
Contexto: Introspection revealed a `flag` field with a `debug` argument, and a `Flag` type with `id`, `value`, and `accessLevel` fields. Before exploiting the debug argument, first observe what happens when you query the flag field normally.
Revela solo las que necesites. Claude lleva la cuenta de cuántas usaste para calibrar la retroalimentación.
Try building a simple GraphQL query that requests the `value` field from `flag`, just like you would query `notes`. Send it to the same endpoint.
Construct a basic GraphQL query for the `flag` object and request its `value` field. Observe whether access is denied or an error is returned.
Send this query:
```json
{"query":"{ flag { value } }"}
```
Note the error response returned — this tells you the plain query is blocked.
Chatea con un tutor anti-spoiler para este paso. Usa solo la especificación de este lab y empieza por la pista más pequeña que sirva.
Cuéntale qué probaste, dónde te atoraste, o pega la respuesta/error que estás viendo.
¿Te gusta Hintru? Buy me a coffee ☕ ☕