Skip to content

Writeup: Advent of Cyber 4 Day 3

AtomicMaya edited this page Dec 3, 2022 · 1 revision

Advent of Cyber 4 - Day 3

Link: Advent Of Cyber 4 on TryHackMe

Question 1

What is the name of the Registrar for the domain santagift.shop?

We take a look using the ICANN Lookup website: https://lookup.icann.org/en/lookup

Answer: NAMECHEAP INC

Question 2

Find the website's source code (repository) on github.com and open the file containing sensitive credentials. Can you find the flag?

There it's just a matter of looking for the URL, and finding the oldest repository involved.

There we look for interesting files, such as for example config.php.

This produces a flag:

Answer: {THM_OSINT_WORKS}

Question 3

What is the name of the file containing passwords?

(See Q2)

Answer: config.php

Question 4

What is the name of the QA server associated with the website?

If we scroll down in the file a bit, we can see the following:

Answer: qa.santagift.shop

Question 5

What is the DB_PASSWORD that is being reused between the QA and PROD environments?

(See Q4)

Answer: S@nta2022

Clone this wiki locally