Gallery

Humans are dumb and horrible, but cats are terribly CUTE!! - said an AI.
Access Info : http://cddc2023-gallery.s3-website-ap-southeast-1.amazonaws.com/

The challenge was presented as a web application vulnerability exercise, aimed at testing our skills in identifying and exploiting security weaknesses commonly found in web applications. We were provided with a link to access the target website and tasked with finding and retrieving a hidden flag.

The homepage does not seem of interest and so we clicked the button "Go to next page". It redirected us to another page with the link /third.html

After seeing that URL path, we intuitively thought there would be a /second.html, and so we tried accessing it but the page redirects us back to /third.html.

We then decided to employ the 'curl' command-line tool. Curl is a powerful utility that allows sending HTTP requests and retrieving the corresponding responses. In this case, we used it to retrieve the contents of the hidden webpage.

curl http://cddc2023-gallery.s3-website-ap-southeast-1.amazonaws.com/second.html

Et voila! We managed to retrieve the flag!

PreviousBrainHack CDDC 2023 NextEazy Network Analysis

Last updated 2 years ago