UITM CYBERHEROES CLUB
Holllaaaa..
hello im back ./hackboredzz!!! can you help me find the anonymous that steal my private key :) help me to find it by using all the techniques that you learn today. The bounty is waiting for the winners so reach meeeee :)
hint:31 35 37 2e 32 34 35 2e 31 35 34 2e 35 37
sooo this clook soo intresting lets explore how to exploit this hehehe...
from the hint we given so number but its look like hex right? lets try cook with my favourite decode tools https://gchq.github.io/CyberChef/ sooo..
soo from here i figure out this is ip address intresting why not we google it?
soo i google it and appear login page :(
soo lets try fuzzing by using robots.txt hehehe...
from here we got something lets try decode its look like base 64?
ohhh i think we got it the flag lets see.. NAHHHHH
my bad hmmmm lets try some auth bypass maybe the author name? from description given its look like hackboredzz lets try
wow we got so qr code lets try scan
noooo we got rick rollll!!!
soo annoying soo after thinking lets try sql injection auth bypass with this help of https://github.com/payloadbox/sql-injection-payload-list soo lets tryy
try by using the list and this payload i manage to bypass the login page :) you guys also can bruteforce :)
sooo after we manage to bypass the login page its look like there are some pic intresting lets download the picture and find something maybe hidden message? i try to use https://stylesuxx.github.io/steganography/
soo from here i got the hidden message and its look like hidden directoryyyy
NOHHH ROKIAHHH weird textttt noooo
i saw something == soo i remember the speaker told me that its must be base64 or base 32 soo i try both...first i try base64 and its not soo i try base 32 and i see the decode message is decreasing soo i try many time and finalllyyyy i got something
BOOM we got the link after decode it like 18 times i guess?
soo we got the the instagram and discover it OSINT TIMEEEE!!!
soo first i see that the owner ig upload some story that contains weird sound soo maybe its a clue?
soo I ANALYZEE every post and find out some fishy gdrive link :)
soo we got to the link and we retrieved .wav and the first time i hear it i know THIS IS MORSE CODEE TIMEE!!! soo i download the file and use this tool https://morsecode.world/international/decoder/audio-decoder-adaptive.html
we got the hidden keyy but remember the author said that o=0 sooo the final flag is UCC{R04DT0WH1T3H4T2.0}
enjoy playing? dont forget to follow and share with your friends -boredzz-