이번에 풀어볼 문제인데 제목부터 디코드라는 워드가 들어간걸보니 무언가를 디코딩하면 문제가 해결될 것 같은 느낌입니다
우선 웹으로 접속을 해보니 HOME, ABOUT, CONTACT라는 3개의 페이지로 구성되어있었고
내용만 봐서는 아무 정보도 얻을 수 없었습니다.
사이트 내용으로는 아무것도 못했으니 웹 소스코드를 확인해보겠습니다
▼ HOME.html ▼
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<link rel="stylesheet" href="style.css">
<link rel="shortcut icon" href="img/favicon.png" type="image/x-icon">
<!-- font (google) -->
<link href="https://fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400&display=swap" rel="stylesheet">
<title>Home</title>
</head>
<body>
<header>
<nav>
<div class="logo-container">
<a href="index.html"><img src="img/binding_dark.gif" alt="logo"></a>
</div>
<div class="navigation-container">
<ul>
<li><a href="index.html">Home</a></li>
<li><a href="about.html">About</a></li>
<li><a href="contact.html">Contact</a></li>
</ul>
</div>
</nav>
</header>
<section class="banner">
<h1>Ha!!!!!! You looking for a flag?</h1>
<p>Keep Navigating</p>
</section><!-- .banner -->
<section class="sec-intro">
<div class="col">
<p>Haaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa</p>
<p>Keepppppppppppppp Searchinggggggggggggggggggg</p>
<img src="./img/multipage-html-img1.jpg" alt="person">
<figcaption>Don't give up!</figcaption>
</div>
</section><!-- .sec-intro -->
<footer>
<div class="bottombar">Copyright © 2023 Your_Name. All rights reserved.</div>
</footer>
</body>
</html>
▼ ABOUT.html ▼
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8"/>
<meta content="IE=edge" http-equiv="X-UA-Compatible"/>
<meta content="width=device-width, initial-scale=1.0" name="viewport"/>
<link href="style.css" rel="stylesheet"/>
<link href="img/favicon.png" rel="shortcut icon" type="image/x-icon"/>
<!-- font (google) -->
<link href="https://fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400&display=swap" rel="stylesheet"/>
<title>
About me
</title>
</head>
<body>
<header>
<nav>
<div class="logo-container">
<a href="index.html">
<img alt="logo" src="img/binding_dark.gif"/>
</a>
</div>
<div class="navigation-container">
<ul>
<li>
<a href="index.html">
Home
</a>
</li>
<li>
<a href="about.html">
About
</a>
</li>
<li>
<a href="contact.html">
Contact
</a>
</li>
</ul>
</div>
</nav>
</header>
<section class="about" notify_true="cGljb0NURnt3ZWJfc3VjYzNzc2Z1bGx5X2QzYzBkZWRfZjZmNmI3OGF9">
<h1>
Try inspecting the page!! You might find it there
</h1>
<!-- .about-container -->
</section>
<!-- .about -->
<section class="why">
<footer>
<div class="bottombar">
Copyright © 2023 Your_Name. All rights reserved.
</div>
</footer>
</section>
</body>
</html>
▼ CONTACT ▼
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<link rel="stylesheet" href="style.css">
<link rel="shortcut icon" href="img/favicon.png" type="image/x-icon">
<!-- font (google) -->
<link href="https://fonts.googleapis.com/css2?family=Lato:ital,wght@0,400;0,700;1,400&display=swap" rel="stylesheet">
<title>Contact me</title>
</head>
<body>
<header>
<nav>
<div class="logo-container">
<a href="index.html"><img src="img/binding_dark.gif" alt="logo"></a>
</div>
<div class="navigation-container">
<ul>
<li><a href="index.html">Home</a></li>
<li><a href="about.html">About</a></li>
<li><a href="contact.html">Contact</a></li>
</ul>
</div>
</nav>
</header>
<section class="contact">
<div class="contact-wrapper">
<h1>Keep searching page.</h1>
<h2> Don't give up!!! </h2>
</div>
</section>
<footer>
<div class="bottombar">Copyright © 2023 Your_Name. All rights reserved.</div>
</footer>
</body>
</html>
코드를 확인해보니 ABOUT.html에서 인코딩된 문자로 의심되는 문자열을 확인했습니다
바로 디코딩 진행해보겠습니다
디코딩만 하니까 바로 flag값이 나오네요
이번 문제는 간단한 문제였습니다
'해킹&보안 > 웹' 카테고리의 다른 글
| SQL 인젝션 (1) | 2025.06.18 |
|---|---|
| [Writeup] Local Authority (1) | 2025.04.29 |
| [Writeup] 웹 쿠키 조작을 활용한 플래그 추출 (0) | 2025.04.29 |
| SSTI (0) | 2025.04.29 |
| 웹 해킹 실습 (1) | 2025.01.08 |
