Home CTFs | THCon23 | Hackbook
Post
Cancel

CTFs | THCon23 | Hackbook

Posted Apr 22, 2023 Updated Apr 24, 2023
By Bat
2 min read

Hackbook

This chall is split in 4 parts (Hackbook#1 to Hackbook#4). There is a Steganography chall that is called Hackbook Bonus #2 you can find it here

Hackbook #1

Here is the challenge formulation:

image

When going to the website, we can create an account on it. When we do so, we can go to the Help Center section and we can see the following:

image

As we can see, we can access post information, and also user information. We are looking for the account of Léa and as we can see it’s the account with the ID=1:

image

Looking at her profile, we can see that she loves her cat grisouille and that she lives in Toulouse,31. We can create a wordlist with the following information to try cracking the hash found via the API of the website and…Voilà:

image

But to connect, we need her email address and we only have her pseudo… But looking at the images where she is tagged we can find her email. We suppose that she has a Gmail account because it begins with a g and most people have a Gmail account for personal business:

image

So now we have the combo lea.leroux.gribouille@gmail.com : gribouille31. As you can see, we can connect to the account:

image

And we find the flag in the Notes section:

image

Hackbook Bonus #1

Here is the formulation for the first bonus challenge:

image

So we search in the source code of every page and…On the Help Center page:

image

Hackbook #2

Here is the formulation for the second challenge:

image

As we can see, Kevin is the user with ID=2:

image

We can find in the list of his posts, the URL of his blog:

image

Where we can find his email kevin@keke.com:

image

The website doesn’t look like there is much… But he talks about some login page… Does he have one ?:

image

Let’s head to the /login page:

image

We can see a basic login page. First thing that comes to my mind is SQLi. So y try the payload admin' or True # and …:

image

We head back to the main page and find his password:

image

We connect with the credentials kevin@keke.com : lock_and_key:

image

And we get the flag:

image

Hackbook #3

Here is the formulation for the third challenge:

image

Our target (Alexia our “girlfriend”) is the user with the ID=3 and we find her email directly:

image

Looking at the blog information, we can see that Kevin is watching Netflix on the account of Alexia:

image

And we can see that Alexia uses the same password on different platforms:

image

So if we can have the password of the Netflix account, we may be able to connect as Alexia. And we can kindly ask her when connected as Kevin:

image

And now, using alexia@girlfriend.com : j@dOreN3tfl1x to connect to the hackbook:

image

And the flag is in the notes:

image

CTFs, THcon23, Hackbook
CTF THCon23 Hackbook Web
This post is licensed under CC BY 4.0 by the author.
Recently Updated
Contents