CSAW 2013 :: Web 100 :: Guess Harder Posted on September 22, 2013 at 5:13 pm by Jonathan Singer and filed under CSAW 2013. The challenge takes us to a page with a log in form. We find a cookie called admin after trying some passwords. This looks like a simple boolean. After changing this value to True and refreshing the page, this reveals to key! key{told_ya_you_wouldnt_guess_it}