Webhacking.kr write-up: old-42
Hello there, welcome to another webhacking.kr CTF writeup. Today’s is all about HTML and some base64 encoding.
The goal is simple, download the restricted flag.docx file. Let’s check out the source code.
Referring to the code, there is a base64 encoded GET request value for ?down. Decode the value and we get the following result
It is a file name but in base64! The answer is clear now, encode flag.docx in base 64 format
Visit the following URL with the encoded text as ?down value.
Download the flag an open up with docx reader such as Libreoffice docx reader.
tags: webhacking.kr - html
Thanks for reading. Follow my twitter for latest update
If you like this post, consider a small donation. Much appreciated. :)