A new case of Wadiya’s national security arrived at Michael’s table. According to the intelligence report, they used this website to share some national secret. What is the secret?
Some lines of HTML are commented in “contact.html”. The user needs to analyse the code and find something in the javascript code.
In javascript, there is a “contact.js” file which is different from others.
But the javascript file is minified and there is some code commented.
You can uncomment and unminify using https://www.unminify2.com/.
In javascript code
requestcheckout.php A GET API call to the backend so we can call that API using any API client.
The response of that API is a .zip file. Then, the user needs to open it and it will show some error.
So something is missing. Open that file in any hex editor.
Zip Archive pk hex 50 4B 04 03 is in the file but it was 50 4B 03 04. Edit this value in that file and save (change magic bytes ‘5B 40 04 03’ to ‘5B 40 03 04’)
But the file is not opening so again we check with hex editor and we find a decimal string ‘115912147332683750505979205674703801681249232118816’
So when we decode the decimal string we get a hex value. When we decode the hex value we get a string - “OOps! Flag not found”
Therefore, we need to remove the decimal string.
“PK^C^D115912147332683750505979205674703801681249232118816^T^@ “ to
“PK^C^D^T^@”
After this step, the file will be open but the password is not produced. We need to find the password.
After some time, PASSWORD FOUND!!!!: pw == Astra123
We can enter the password but the file:
This value needs to be converted to binary. We need to replace ‘N’, ‘!’ with binary ‘0’, ‘1’
Python program to convert
Output will be:
ASCII value of the binary will be the flag: domectf{mhtpev18p0m68bqx6F87NWh2OwmF1Ahi}