Back

Mercure’s Signature Dish Writeup

By
Jishnu Vijayan
Published on
20 Sep 2020
1 min read
DOMECTF2020

Story

Hotel Me.Mercure is an online secret food ordering platform. Find a way to order their signature dishes!

Solution

A URL is provided, which leads to a login page. The challenger has to login using username and password, but as we know the password is not given (username is provided).

After logging in, you can find a PDF file, which is also protected by a password. Inside the PDF, the flag is hidden. You have to find out the password to login and also you have to crack the password of the pdf file.

1. Brute force the login page using rockyou.txt file to crack the login page password.

dish 1

2. After login there will be a PDF file, which is also protected by password.

dish 2

3. Use “John the Ripper” to crack the password for this file, and the flag will be hidden in the PDF. A simple text hiding method was used to hide the flag.

dish 3
Automated human-like penetration testing for your web apps & APIs
Teams using Beagle Security are set up in minutes, embrace release-based CI/CD security testing and save up to 65% with timely remediation of vulnerabilities. Sign up for a free account to see what it can do for you.
Product tour
Written by
Jishnu Vijayan
Jishnu Vijayan
Security Engineer
Experience the Beagle Security platform
Unlock one full penetration test and all Advanced plan features free for 10 days
Start free trial
Find surface-level website security issues in under a minute
Free website security assessment
Experience the power of automated penetration testing & contextual reporting.
Product tour