siunam's Website

My personal website

Home Writeups Blog Projects About E-Portfolio

Rick Roll

Background

I mean, do I need to say more?

https://rickroll-web.challenges.ctf.ritsec.club/

NOTE: You will need to combine 5 parts of the flag together

NOTE: Each part of the flag is used only once

Find the flag

Home page:

When we go to /, it’ll redirect us to /1.html.

Let’s view the source page:

[...]
<link rel="stylesheet" href="2.css">
[...]
<a href="Don't.html" class="btn btn-rounded">Don't Sign In</a>
[...]
<!--
    FIND THE FLAGS
[...]
I just wanna tell you [_TuRna30unD_]how I'm feeling
[...]
-->

Nice rickroll.

And we found the first part of the flag!

We can also see that in /1.html there’s a CSS is loaded via <link> element: 2.css

┌[siunam♥earth]-(~/ctf/RITSEC-CTF-2023)-[2023.04.01|13:53:12(HKT)]
└> curl https://rickroll-web.challenges.ctf.ritsec.club/2.css
[...]
Hey there you CTF solver, Good job on finding the actual challenge, so the task here is to find flags to complete the first half of the chorus of this song, and you
will find the flags around this entire web network in this format,/*[FLAG_PIECE]*/ Heres a piece to get started /*[RS{/\/eveRG0nna_]*/  find the next four parts of the famous chorus
[...]
.input button{
    [...]
    background-color: [_|3tY0|_|d0vvn] var(--primary-color);
    [...]
}
[...]

We found 2 more parts!

Then, in 1.html, we also see that there’s a “Don’t Sign In” link:

Again, view source page:

[...]
<link rel="stylesheet" href="1.css">
[...]
<!--
    Hi Again
[...]

    !It Might be here!
[...]
Your heart's been aching[_D3s3RTy0u}], but you're too shy to say it (to say it)
[...]
-->

Found the fourth one!

Next, we also see there’s a 1.css CSS file:

[...]
.btn{
    [...]
    border: /*[G1v3y0uuP]*/ none;
    [...]
}
[...]
.input button{
    [...]
    text-align: /*[_|3tY0|_|d0vvn_]*/center;
    [...]
}

Found the last part of the flag!

Hence, the full flag will be:

Conclusion

What we’ve learned:

  1. Inspecting Source Pages