web/hidden-values (#25)

* chall * yaml * yaml fix * deploy stuff --------- Co-authored-by: mud-ali <[email protected]>
BCACTF · Aug 26, 2023 · 36ac5c6 · 36ac5c6
1 parent c19f2c2
commit 36ac5c6
Show file tree

Hide file tree

Showing 8 changed files with 766 additions and 0 deletions.
diff --git a/hidden-values/.dockerignore b/hidden-values/.dockerignore
@@ -0,0 +1,3 @@
+node_modules
+npm-debug.log
+chall.yaml
diff --git a/hidden-values/Dockerfile b/hidden-values/Dockerfile
@@ -0,0 +1,13 @@
+FROM node:20 
+
+WORKDIR /usr/src/app
+
+COPY package*.json ./
+
+RUN npm ci --omit=dev
+
+COPY . .
+
+EXPOSE 3000
+
+CMD ["node", "app.js"]
diff --git a/hidden-values/chall.yaml b/hidden-values/chall.yaml
@@ -0,0 +1,17 @@
+name: Hidden Values
+categories:
+  - webex
+value: 50
+flag: camp{YOu_WerENt_5Upp0sE_T0_se3_THI5_55d28b16d94c3}
+description: |-
+  I have the right username and password, `bcaCTFAdmin2?` and `admin!?!?!?!`, but it's not letting me log in.
+  Can you figure out why?
+hints:
+  - How do forms send values?
+authors:
+  - Jack Crowley
+visible: true
+deploy:
+  web:
+    build: ./src/
+    expose: 3000/tcp
diff --git a/hidden-values/src/app.js b/hidden-values/src/app.js
@@ -0,0 +1,21 @@
+const express = require('express');
+const app = express();
+const flag = "camp{YOu_WerENt_5Upp0sE_T0_se3_THI5_55d28b16d94c3}"
+
+app.use(express.static(__dirname + '/public'));
+app.use(express.urlencoded({ extended: false }));
+
+app.get('/', (req, res) => {
+  res.sendFile(__dirname + '/index.html');
+});
+
+app.post('/', (req, res) => {
+    if (req.body.username == "bcaCTFAdmin2?" && req.body.password == "admin!?!?!?!") {
+        res.json({"flag":flag})
+    }
+    else res.redirect("/")
+})
+
+app.listen(3000, () => {
+  console.log('http://localhost:3000');
+});
diff --git a/hidden-values/src/index.html b/hidden-values/src/index.html
@@ -0,0 +1,50 @@
+<!DOCTYPE html>
+<html lang="en">
+
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Document</title>
+    <link rel="stylesheet" href="/index.css">
+</head>
+
+<body>
+    <div class="screen">
+        <div class="login">
+            <h1>Login</h1>
+            <form action="/" method="post">
+                <input type="text" class="username" name="notUsername" placeholder="Username...">
+                <input type="password" class="password" name="notPassword" placeholder="Password...">
+                <div class="css">
+                    <div>
+                        <div>
+                            <div>
+                                <div>
+                                    <div>
+                                        <div>
+                                            <span>
+                                                <div>
+                                                    <div>
+                                                        <input type="text" name="username" class="notUsername">
+                                                    </div>
+                                                </div>
+                                            </span>
+                                        </div>
+                                    </div>
+                                </div>
+                                <div>
+                                    <input type="password" name="password" class="notPassword">
+                                </div>
+                            </div>
+                        </div>
+                        <div>
+                        </div>
+                    </div>
+                </div>
+                <input type="submit" value="Submit" class="submit">
+            </form>
+        </div>
+    </div>
+</body>
+
+</html>