Back to Walkthroughs
Scavenger Hunt
PicoCTF Web Exploitation [Easy]Easy

Scavenger Hunt

#tutorial

Challenge Description

image

Solution and Analysis

First visit the website given in the challenge description, then open up developer tools by pressing CTRL+SHIFT+U you will get the first part of the flag in the html code of the page as shown

image

Then next go to mycss.css to get the 2nd part of the flag

image

For the 3rd flag go to myjs.js to get the hint where the next will be

image

The hint refers to the robots.txt file of a website which can tell search engines what parts of the website they can and cannot access

image

In Apache web servers, a .htaccess file is a configuration file that allows you to customize server behavior on a per-directory basis. Just visit that page to get the next flag and hint

image

The final hint refers to the .DS_Store file, short for Desktop Services Store, is a hidden file automatically created by macOS's Finder application within each folder. Visit that to get the final flag, Combine all of them and submit to complete the challenge

image