Rogue One

Overview

Overall difficulty for me: Very easy

In this challenge, we can start a docker instance:

Find the flag

Home page:

When we click the Begin here, it’ll generate a random string:

Too slow… Alright then, I’ll write a python script to solve this:

#!/usr/bin/env python3

import requests

url = 'http://10.10.100.200:38125/number/'

s = requests.Session()

r = s.get(url)
number = r.text

result = s.get(url + '?answer=' + number)
print(result.text)

Output:

┌──(root🌸siunam)-[~/ctf/GuidePoint-Security-Oct27-2022/Web/Rogue-One]
└─# python3 solve.py
GPSCTF{2692edb3426f224b78d695938de352e3}

We got the flag!

Conclusion

What we’ve learned:

Sending GET Requests in Python