diff --git a/content/posts/adventofctf/challenge_1.md b/content/posts/adventofctf/challenge_1.md index c60e36c..5e82ac7 100644 --- a/content/posts/adventofctf/challenge_1.md +++ b/content/posts/adventofctf/challenge_1.md @@ -27,19 +27,21 @@ Visit to start the challenge. ## Solution -When taking a look at the source we find the following comment: +When opening the page, we're asked for Santa's password. Unfortunately, we don't know the password. Don't stop there though, mayby someone has hidden it in the source html. + +Let's open the source by pressing `Ctrl + U` and take a look at it. Near the bottom we find the following comment: ```html ``` -If we then use `base64` to decode this string we get `advent_of_ctf_is_here`. +This looks like a `base64` encoded string so let's use the program `base64` with the `-d` decode flag to decode the text. ```bash > echo "YWR2ZW50X29mX2N0Zl9pc19oZXJl" | base64 -d advent_of_ctf_is_here ``` -We can then enter this string on the challenge website after which it will give us the flag: `NOVI{L3T_7H3_M0NTH_0F_FUN_START}`. +We get some plain text. If we enter it as Santa's password on the challenge page, it gives us the flag: `NOVI{L3T_7H3_M0NTH_0F_FUN_START}`. This flag can then be submitted for the [challenge](https://ctfd.adventofctf.com/challenges#1-2).