Advent of Cyber 2022 — [Day 3] OSINT Nothing escapes detective McRed Q&A
Dec 4, 2022
Q: What is the name of the Registrar for the domain santagift.shop?
A: NAMECHEAP INC
Q: Find the website’s source code (repository) on github.com and open the file containing sensitive credentials. Can you find the flag?
A: {THM_OSINT_WORKS}
Q: What is the name of the file containing passwords?
A: config.php
Q: What is the name of the QA server associated with the website?
A: qa.santagift.shop
Q: What is the DB_PASSWORD that is being reused between the QA and PROD environments?
A: S@nta2022
📖Resources: