Advent of Cyber 2022 — [Day 3] OSINT Nothing escapes detective McRed Q&A

Ivo Martins
Dec 4, 2022

--

Q: What is the name of the Registrar for the domain santagift.shop?

A: NAMECHEAP INC

https://who.is/whois/santagift.shop

Q: Find the website’s source code (repository) on github.com and open the file containing sensitive credentials. Can you find the flag?

A: {THM_OSINT_WORKS}

https://github.com/muhammadthm/SantaGiftShop/blob/main/config.php

Q: What is the name of the file containing passwords?

A: config.php

https://github.com/muhammadthm/SantaGiftShop/search?q=DB_PASSWORD

Q: What is the name of the QA server associated with the website?

A: qa.santagift.shop

https://github.com/muhammadthm/SantaGiftShop/search?q=QA

Q: What is the DB_PASSWORD that is being reused between the QA and PROD environments?

A: S@nta2022

https://github.com/muhammadthm/SantaGiftShop/search?q=DB_PASSWORD

📖Resources:

Google dorking

github.com

HaveIBeenPwned

Whois services

--

--