Access Denied 1.2 CTF 2018: codeIIEST (Web Exploitation)

Challenge

0xeax developed the codeiiest website and hid the flag somewhere.
It is the most beautiful website I have ever seen on this planet. Why don't you visit the website and get me the flag?
Challenge running at : https://codeiiest.github.io

Solution

In the home page of the website there is the following HTML comment at the end.

<!-- Here's the first part of flag for You.  -->
<!-- part1 
accessdenied{1_w3nt_thr0ug -->

<!-- rest part of flag is in d4rks0c1ety page -->

On the other page, i.e. https://codeiiest.github.io/d4rks0c1ety.html, you can find another HTML comment at the beginning.

<!-- part 2 of the flag is -->
<!-- 
		h_th1s_w3bs1t3} 
-->

<!-- Thanks for your time. -->

So the flag is the following:

accessdenied{1_w3nt_thr0ugh_th1s_w3bs1t3}

Rispondi

Inserisci i tuoi dati qui sotto o clicca su un'icona per effettuare l'accesso:

Logo di WordPress.com

Stai commentando usando il tuo account WordPress.com. Chiudi sessione /  Modifica )

Google photo

Stai commentando usando il tuo account Google. Chiudi sessione /  Modifica )

Foto Twitter

Stai commentando usando il tuo account Twitter. Chiudi sessione /  Modifica )

Foto di Facebook

Stai commentando usando il tuo account Facebook. Chiudi sessione /  Modifica )

Connessione a %s...

Questo sito utilizza Akismet per ridurre lo spam. Scopri come vengono elaborati i dati derivati dai commenti.