NullCON #ackIm CTF 2017 Write-UP(Web-1)

we are always excited for #ackIm CTF.

I was palying this CTF from 2k12. and This is the one of the best CTF I ever lets not waste time and start the Journey.

When you login to Portal you find the below details.

Obliviously the first step Is to Hit the WEB challenge coz I assume that it will be easy but that assumption got killed bruatally.

So the challange was

Chris Martin wants to go home. Can you help him get there as soon as possible?
And the URL which ask for the username password.

after looking source code I notice that my scroll bar is too long

In The End i think I Found the Flag

And i think its easy but, it wasnt a flag.

it was base64  sting which gives the md5 hash

Base64 -->; MD5 -->; Coldplayparadise.

This Time I was sure that this must be username/password.

When i put this as username password.

It Gives me

Mismatch in host table! Please contact your administrator for access. IP logged.

A quick idea to add X-Forwded-For: will give you the first flag.

And The Flag is

The flag is: 4f9361b0302d4c2f2eb1fc308587dfd6

Yay so Finally we did it. 

hope you understand that how my first assumption got brutally Killed.


  1. You must 카지노사이트.online methods to|learn to} outline the bankroll on your games before you place your first guess on the roulette wheel. And then, want to|you should|you have to} force yourself to stay to that quantity — regardless of what occurs at the table. My focus is level out|to indicate} you the way to|tips on how to} maximize your possibilities to win if you play. Not to scam you with a bogus system to win money on roulette an everyday basis} or to teach you winning roulette secrets that do not exist. With a bankroll of €80 and a lower restrict of €1, I place bets of between €5 and €8 on each spin. That's as a result of|as a outcome of} I like to mix the size of the games with my winning odds.


Post a Comment