Writeup: Advent of Cyber 4 Day 3 - AtomicMaya/knowledge-base GitHub Wiki
Advent of Cyber 4 - Day 3
Link: Advent Of Cyber 4 on TryHackMe
Question 1
What is the name of the Registrar for the domain santagift.shop?
We take a look using the ICANN Lookup website: https://lookup.icann.org/en/lookup
Answer: NAMECHEAP INC
Question 2
Find the website's source code (repository) on github.com and open the file containing sensitive credentials. Can you find the flag?
There it's just a matter of looking for the URL, and finding the oldest repository involved.
There we look for interesting files, such as for example config.php.
This produces a flag:
Answer: {THM_OSINT_WORKS}
Question 3
What is the name of the file containing passwords?
(See Q2)
Answer: config.php
Question 4
What is the name of the QA server associated with the website?
If we scroll down in the file a bit, we can see the following:
Answer: qa.santagift.shop
Question 5
What is the DB_PASSWORD that is being reused between the QA and PROD environments?
(See Q4)
Answer: S@nta2022