Mother's Secret - CTF (TryHackMe) | detail explained

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

[Music] all right guys uh welcome to the mother's Secrets room or to try hack me this is a really different room I ever seen you know it's we just have to be looking here to cut analyze and doing something different here you know it's it's you know it's really um different room for for me actually I would never selling before the um I've never sewing before and the cotton lazing room but it's it's really cool I think it's um it's like uh you know some difference we have to be analyzing code like um the different metal thing here and this is really funny is trust me it's really funny room so if you already know then we can solve it sold these rooms together so mother Secrets now we have to be starting here you know we have an IP addresses here and we have to be actually hacked the IP addresses but this room is not like that so we just have to be like um too interesting about some credential or some interesting idea is over here so there are just our setting up for us to start attack bugs start the virtual mesh and provide the furthest Challenge and note this machine IP address you will need it later to access web application you can now open the attack box and the server IP can actually link here but we are already knows how we can using this through a hack me if you don't know you have to be learned so now let's go for task two so introduction open accessing the mother 6000 computer AKA mother you will see modernized Server however since only have a career member level role you only have red access limited resources but there are other ways access it can you find them and cover your mother's secrets so this is actually what these rooms meaning so we just have to be change your role for the current member and you will see there directly so let me open this the web server on the ad Port so VR now as grandmember and we have now actually um I mean so we have a satisfying and the forward changing something here we have to be changing our user this is actual this room um the meaning here so equipment check they'll want the files attached to this task review the code and explore the available endpoints motor server and try to by any list and revealed member secrets search for file that contains essential information about the ship's activities exploit the vulnerable code download the secrets from the Can you spot the vulnerable code so this is just for the cartoon logic so what does that mean so the most important things you have to be reading here operating metal here below or some sequences and operations to get you started use the following to unlock information and navigate the mother emergency command is over right here exam 300 and now it's a 100 375 use it when accessing alien lures so this um command is really important for us we have to be used okay please do not uh forget it so let me open here a notepad and then save this because we have to be using it so actually here or Target or we had to be guessing this API nusromo mother or on this on this directory for this file so we just had to be checking this file directly here so if you're ready now we can start how we can choose it and how we can I mean I got this room so you just have to be the long task file to here it will definitely give you different things you know this is for APR routes um we have to be checking the API the directly so you know it's a uh it's just Javascript file on the email so we have to be working here the email we have to be understanding here so what this other code here for example websocket Javascript file and then um you know uh the another things here um they are using here the email director we have to be read uh your email directory here and the another directory is NOS Romo and then the um those promo yes this they are using here attack website cut and this is really important um I think we have to be analyzing here directly so how where is there so I remember yeah it could be here on this nosrama directory I'm gonna actually good at the Cotton Legend but you can actually asking this to chat gpk and that will it will give you too many important things here directly okay so let me yes it's um giving to information about this code and what does it mean so this is actually giving us this yeah to here the most important create another post root is not room not Aroma mother that expects just will file path so what does it mean we have to be checking or file with this command so we have to be using hero file path directly so let me say with again file pad we have to be I mean so equalation the file pads at the or file with the file paths the command link here red so this is really important so we're done checking Here app Javascript and index your security another important important things there let me checking um no we just have to be looking here the file path all right the chat GPT is realized that file pad is really important advice giving you giving us like that alright so that means we have to be go here and then reading the first question is over there what is number of the emergency comment override you know it's a 100 uh 375. what a special order number now we can starting analyzing here the code directly so actually here is not needing to direct your scan but if you're starting here directors can so let me show you guys to here is definitely so let me go there and it's it's actually no need so you you don't need it to analyzing it so but if you want to be check it you can starting like that and then we got here different things so it's nothing but it's really cool because we are we can got together different things so where's the word list is over here right so let me open this their Buster directory list and then for extension txt HTML um JavaScript and HTML all right so that means starting at so this director of scan is actually giving you so this is easy way to be hack this hack this machine and hack this room it's a index mining's Javascript file is a worder so you just have to be good or index minor Javascript file and you know it's it's look like a different but you can use in here JavaScript beautiful JavaScript beautiful and then and read this Javascript file is different so let me say here JavaScript beautiful and then online JavaScript beautiful file so let me copy all of things here and go there and then paste that and then beatify call controller and enter so we have now this here is Javascript code like that we can analyzing is it yes so [Music] um you can actually analyzing it just here for example embedded within the intercad codes of mother system Alias and alien loader alright so let me scroll down to here I think um we can already asked it for chat GPT again so as for giving us this the most beautiful things to hear all right okay um so the cardstartens I have e which function is executed immediately after it's definitely it it takes two perimeters okay yes we know the here directories yemi Al nosramo and so what's important here I don't know what I think we have to be copy this and then let me go there CD um Allied documents and remote Dash our secrets all right so I'll make right here secret directory again and go to secrets and the Nano index minor Javascript file controller or controller copy so let me go there and cut this index mine mine is Javascript file and if you are analyzing these codes you will see there there's different parameters like that or different value like that so I think they have to be actually giving giving them like for analyzing say most clearly here so if I'm gonna be go to up to here and you will see there where is it I'm really oh my God can I find it it could be right here alright guys yes here and if you are checking here this code is a bit um the starting with cost you will see there is um to equal to n equals so when I see or when I saw at equal and equal I always am thinking about like base64 here so I Wanna Be Goddard the Cyber shaft like here definitely and then checking here this code's meaning here the decrypting and with this command this is over there so let me changing here everything and it will giving us this base64 again and this this means are classified and you will see the classified here for is over there for the flag is that right so now to analyzing the other base64 here I think so let me cut index mean Javascript file here and I just want to be looking at this equally kill value here directly so it is just the equilical director will gonna be right here so for analyzings most clearly so I think they had to be analyzing this um this Valley is over there so let me go to the Cyber chef and it's giving us this flag here directly is over there so lamp changing here but it's not gonna be working because this is of this call again before and you will see there is order is coming out so here the order number is 9 3 and 7 here directly is that it's cool so now I think we have to be analyzing here the most important things is is that we're just analyzing this code but there are there are too many analyzing for us to be had to be analyzing you know so you just have to be go your chat GPT or if you are analyzing uh manually on your Javascript file so you will see there so what does it mean so it's just giving us creative pause root Nostromo that I can accept file pad pyramid is create value so this is really important all right so if you are asking this chat GPT it will definitely give you to how you can actually do this but I don't want to be using with JavaScript file so I will ask them can you do it with curve file can do it for curl with the curl all right this is so this is really basic armies or with the chat gpts everything is really gonna be easy for us so this is why we are choosing here directly why we are using here directly so if you are ready guys let me explain this command here so if you remember the for analyzing this code here they are actually giving us the am like um create here the Post Road so we are just create here post method and the content type is content type could be actually equal to here application and Json because they are using JavaScript file here and then you know we just have to be equaling and then the same value for the file path and we have to be analyzing file pad here directly so why we are choosing here file under rash pad is about why we're choosing here so we just have to be check this code is over there your file path here and then just giving here this um the or server addresses and then the directory here for example if you go there in Nostromo they will actually giving us this you just hit the wrong routes so this is that's our two minutes here the first is because they are we are not the crap we are not the root here or the other user we are the cree member and we have no access so the other way they are using here the pulse methods on the application Json directory so that means or we just have to be use it that is over there directly so let me copy this and then so let me go back back back back back back back back a rat for example let me give it this and then say here EML because they are I mean it's like uh either hat with this yaml here directly so you can check it or nosrama or email it doesn't matter so for example if I check and cure all right it's gonna be working so it's giving us 30's error message failed to read file because there is nothing file here like that is it so what is or file here this is API Nostromo mother so we have just have to be changed with this directory API Nostromo mother so which file we have to be actually here guy um to Red it's definitely equal to secret.txt so we just have to be changed with secret txt here directly um um statues authentication failure message [Music] all right we just had to be human wrote first all right we have to be doing KML before all right let me change it with yaml and give it a secret txt um not the yaml file path here um so there is no secret text on the email so what does it mean we have to be checking it with Emil so let me changing it with the email but there is no read file here so time to be go operation mineral emergency command override is um this and use it when accessing Elliot loader so let me using this for the file here directly so I think it will giving us different method here so when I got this it's giving us four science officer Eyes Only special Secrets rewriting to API in nostradamo and order to order txt file is over there so we have to be checked here like that oh my gosh could be like here for API Nostromo right like that yes it could be like here I don't know why I'm saving oh my gosh um it's not important so Oz or new routing is equal to um API most drama and then could be we have to be changing at four this txd file is that yes so time to be go there yeah we have we check here the another Flags directly so we got this flag here all right so what is the commanding here for science or firster Eyes Only special order is equal death and the priority one is your return organism for analyzing all other consideration in secondary and curve exam expandable this flag is equal that so that means I think we have to be checking here under the API nostrama mother directory for the secret txt here directly all right let me check in here secret txt so our secret taxi is equal to opt mother here so this is or new directory we have to be analyzing here right but this is just on to you know on the machine directory could be so this could be our different director already know so let me change it with now oh my gosh yes this is a secret txt and cool brv had to be changing with up mother like that status error message science officer eyes only so if you're checking care if they're the LPI that I'm using here yes the secret is flag in your returned organs and meow meow so we got in here the the less flag here and then is actually asking us secrets for mother Secrets here so there's just a for one question we have to be checking so let me open here for um reading your Etc pass WD maybe it will gonna be helping us yes so we are gonna see here what is this username for the routing here the website um is there I think it's not a red reading different things and I know it could be different um I don't know why what can I do um reading here about what is name of size officer with permission all right when the roll change this name new name is displayed this new name displayed is over here we got ink but it's Ash is Ash all right this rule could be here all right so that is really easy with this so guys thank you for watching video I'm not good at the code analyzing up um yes I'm not good at the coding less Inc but I know something um if I'm confused with you I'm really sorry but I I want to be doing good stuff and um I just want to show you how this cut and lies in here with the chat GPT and I have you checking your JavaScript beautiful cut here and how we can using QR code commands and what is this why we're using here pause without content type and the file path here directly so if you like this video and really appreciate it and thank you for watching

Info

Channel: Osman Dağdelen

Views: 1,403

Rating: undefined out of 5

Keywords:

Id: og1stmtRiF8

Channel Id: undefined

Length: 21min 7sec (1267 seconds)

Published: Sat Sep 09 2023