DefendTheWeb.net, previously called HackThis.co.uk, is a very famous and well-known interactive security platform where you can learn and challenge your skills.. It contains challenges from several different cybersecurity fields.
I’ve decided to have a bit of fun and try to solve every single challenge presented, from the easiest to the hardest. (although easy and hard will be different depending on your skillset and field of expertise).
As I do with any challenge website, I WILL NEVER post the flag in cleartext, as it kills the fun and thrill of finding it, however I will post my way (or ways) of getting there. This is done in respect of the website’s security and non-disclosure policy, even when it doesn’t have one ;).
Challenge Intro 2
This challenge is also rated as Bronze difficulty, which should be easy to solve. The author provides us with just simple instructions:
The target is addicted to World of Peacecraft and it will really screw him over if you could get access to his account. You have got access to a targets email account:
There is also a green button named “[ email ]” on the screen. So I believe, juding by the description, the goal is to get access to the target’s email, which can’t be seen right away.
By clicking on the “[ email ]” link we go to some sort of webmail.
After inspecting all directories, the password can be found in the Trash. All we have to do now is clicking on the Wordl of Peacecraft Activate account email, click the activation link and use the password found.
And there we have it. Our friend F12 is really sad that we didn’t have to use him. See you on the next challenge.
