Sunday, 17 May 2020

Insp3ctr picoCTF Writeup

  May 17, 2020      No comments

                                         Insp3ctr picoCTF Writeup





Category : WEB EXPLOITATION


This exercise was a very straightforward warm up : the flag was split in three parts (well, two in my case) and put in comments in three different source files on the site :

Index


view source on the index page showed the following HTML comment :
<!-- I learned HTML! Here's part 1/3 of the flag Here */
We can also see that a script and a stylesheet are loaded :
<link rel="stylesheet" type="text/css" href="mycss.css">
<script type="application/javascript" src="myjs.js"></script>

Style sheet


If we examine the stylesheet, we can see that in ends with a CSS comment :
/* I learned CSS! Here's part 2/3 of the flag here */

Script


Similarly, the myjs.js ends with the following comment :
/* I learned JavaScript! Here's part 3/3 of the flag:  */
So if we concatenate the three parts, we get the flag 
 picoCTF{tru3_d3t3ct1ve_0r_ju5t_lucky?e85ef63c}


See Our Last Blog : Introduction to Capture The Flag


You tube Video Below:




If you Like This Video , Share and Subscribe my Channel.


Support me by Subscribing and Sharing This Video


0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)