Need Help with HDC web challange

hey all :)
i am trying to solve the HDC web challange
i have found the credentials to access to HDC panel but then i didn't found any email to send to get the flag as it was mentioned in the description any hint ??

«13

Comments

  • edited November 2017

    I'm the opposite of you. I have all the emails, but didn't get into the interface yet. My hint to you is enum and look at the source-code of any page you might find along the way :D

    Can you spare a hint on how to get into the interface, pure bruteforce or is there something else?

    Hack The Box

  • thnx for ur help
    your hint is also mine LOL
    try to look at all the source code of any pages and files
    note: you have to know what you are searching for (this is the best hint)

  • but me i did searched all the sources for emails and found nothing ....

  • You both have all of the information you need.

    likwidsec

  • likwidsec
    give us a hint ?? :)

  • Try using the interface to send emails to the addresses you know.

    likwidsec

  • me i dont have the emails

  • look into the source code of all panes, and you'll notice something very very interesting :B

    Puerkito66

  • @puerkito66 said:
    look into the source code of all panes, and you'll notice something very very interesting :B

    i have visted evry page even the JS files but nothing there i tryed searching emails / mail / @ and nothing

  • @Tw4vesX said:

    @puerkito66 said:
    look into the source code of all panes, and you'll notice something very very interesting :B

    i have visted evry page even the JS files but nothing there i tryed searching emails / mail / @ and nothing

    Most likely you didn't find the interested page, because if so, you would find the emails almost instantaneously.

    Did you use some tools yet?

    r7f5

  • edited November 2017

    no i didn't use any tools i have done everything manually and i succefully got into the panel but without the emails

  • i succefully got into the panel but without username password. please tell how to get flag.

  • are you sure, without password ? new way ? else if I remember that chall, check url.

    peek

  • edited November 2017

    Need some help here too. Got into the panel, review the "core" information and came up with a "semi-flag" that starts with "p0" I just can't seem to find the email address even after reviewing all the "core" code. PM me if you can point me in the right direction

  • I'm also stuck on this challenge. I've found some emails but i didn't found anythings which can help me to connect to the interface. I won't to spoil here but i found pages and i don't know what i can do with them.

    Someone got an idea or a hint ?

  • edited November 2017

    @Tw4vesX said:
    i have visted evry page even the JS files but nothing there i tryed searching emails / mail / @ and nothing

    check again the source code of ALL, and also check the paths where the pages are saved.

    Puerkito66

  • @nimae said:
    I'm also stuck on this challenge. I've found some emails but i didn't found anythings which can help me to connect to the interface. I won't to spoil here but i found pages and i don't know what i can do with them.

    Someone got an idea or a hint ?

    I've done this challenge. Just read all things you find.

  • This challenge was pretty dumb imo, look at the big files you'd normally skip over, search for a few common terms, especially related to the slightly weird markup on the page.

  • i have got email and got access of cpanal. how i go further for flag

  • @hard said:
    i have got email and got access of cpanal. how i go further for flag

    Look at the description of the challenge .__.'

    Puerkito66

  • very interesting one. loved it... cracked it just today.

    Hack The Box

  • pleaseeeeeee hint on cpanel thing , i really tried everything ;( ;(

  • @motazreda said:
    pleaseeeeeee hint on cpanel thing , i really tried everything ;( ;(

    Whats your progress? Did you access the panel?

  • @motazreda said:
    pleaseeeeeee hint on cpanel thing , i really tried everything ;( ;(

    this challenge is supposed to drive you crazy. But I laughed at myself after solving it.

    Hack The Box

  • @D4n1aLLL
    i just got the mail list and now i really tried many things to access the cpanel with no hope ;(

  • Completely stuck.. okay so I got the list of emails.. and the funny looking chars pointing to that list of emails got anything to do with it? but can't figure out what on earth it is. am i supposed to get the hex value of it and convert to a different language?.. can anyone please PM me a hint pointing to the right direction.

  • @samaus said:
    Completely stuck.. okay so I got the list of emails.. and the funny looking chars pointing to that list of emails got anything to do with it? but can't figure out what on earth it is. am i supposed to get the hex value of it and convert to a different language?.. can anyone please PM me a hint pointing to the right direction.

    ok.. so I went to the length of understanding what language that is.. and the word. but what next.. I can send emails but nothing happens after that

    anyone got a hint?

  • @motazreda said:
    i just got the mail list and now i really tried many things to access the cpanel with no hope ;(

    Look at the source of the login page, and pay attention to the source of the page (especially in thing you normally ignore)

    Puerkito66

  • I guess its something to do with the jquery. But don't know exactly what to look for. Please help guys. I'm a beginner and trying to learn

  • @JChris said:
    I'm the opposite of you. I have all the emails, but didn't get into the interface yet. My hint to you is enum and look at the source-code of any page you might find along the way :D

    Can you spare a hint on how to get into the interface, pure bruteforce or is there something else?

    How did you get the emails??

Sign In to comment.