APU CSFC

HackIM 2013 - Web 200 WriteUp | APU CSFC

Posted: 2013-03-02 18:10   |  More posts about CTF nullcon HackIM WriteUps

Web 2 - 200 points

We were given a url to the challenge and this is what it displays:

/galleries/Selection_063.png

It's quite clear that you either need to know the credentials or to register. So, we chose the register route. We first tried logging with our own crafted credentials. But we were unable to view the flag that way. Thus, chose to register as admin afterwards. Of course, we chose a password that is unique for us. ;)

/galleries/Selection_064.png

And well surprise...it was accepted!! AWESOME!

/galleries/Selection_065.png

After we login we can see that the post named flag now has an option for us to view the post!

/galleries/Selection_066.png

So, we clicked on the view link and out comes the javascript alert function that gave us the flag.

The flag is: ChutkiisVERYcute

Contents © 2013 admin - Powered by Nikola