Difficulty: baby
Category: web
Author: Pyth0n33
Imagine you’re throwing a party. You could buy all the food, drinks,
and decorations, prepare everything yourself, and then clean up afterwards.
That’s like running your own servers. You have total control,
but it’s a lot of work and expense.
Now, imagine instead you decide to hold your party at a restaurant.
They handle the food, drinks, and clean-up. You just pay for what you consume.
That’s like serverless computing. You don’t worry about the infrastructure;
you just focus on having a great party (or in this case, building a great app).
However, there seems to have been a misunderstanding about the term serverless…
Remote
We are provided with a hosted web server, no source code:
Exploitation
When looking at the network requests, we see a request to get database.db.
We can download this file and look at it using the sqlite3 CLI:
# sqlite3 database.db
sqlite> .tables
Login
sqlite> select * from Login;
admin|11a4a60b518bf24989d481468076e5d5982884626aed9faeb35b8576fcd223e1
The value next to the username seems to only be a hash, not the real password.
Upon entering it on CrackStation, we get python as a result.
Logging in with admin:python reveals the flag:
Flag
Conclusion
First challenge I’ve solved this qualifier! Took me a whole 2 minutes to solve ^^