IceCTF - 30 - Move Along - Web

Informations

Version

By Version Comment
noraj 1.0 Creation

CTF

Description

This site seems awfully suspicious, do you think you can figure out what they're hiding?

Solution

  1. Display source code CTRL + U.
  2. The page is only including an image http://move-along.vuln.icec.tf/move_along/nothing-to-see-here.jpg.
  3. See the move_along/ sub-folder and go in it move_along/
  4. Nginx listing functionnality is not disabled so we can see there is a sub-folder [0f76da769d67e021518f05b552406ff6/][secretfolde] (dirb won't work).
  5. There is a secret image secret.jpg containing the flag IceCTF{tH3_c4t_15_Ou7_oF_THe_b49}.
Share