[CH] HTML
FlyDragon
Step.1
在index.html使用F12開發者工具
可以發現有一個hidden的button
Image Not Showing
Possible Reasons
- The image file may be corrupted
- The server hosting the image is unavailable
- The image path is incorrect
- The image format is not supported
Learn More →
Step.2
將hidden刪掉,出現一個按鈕
Image Not Showing
Possible Reasons
- The image file may be corrupted
- The server hosting the image is unavailable
- The image path is incorrect
- The image format is not supported
Learn More →
按下按鈕發現會跳轉到cat.html
回來查看<script>可以發現還有另外一個function
判斷window.location.href可以用來移動到不同頁面
Step.3
將onclick()中的cat()更換成magic()或是直接前往secret.html
得到第一部分flag
Image Not Showing
Possible Reasons
- The image file may be corrupted
- The server hosting the image is unavailable
- The image path is incorrect
- The image format is not supported
Learn More →
Step.4
回到cat.html可以看到用<div>和<span>包起來的註解
得到第二部分flag
Image Not Showing
Possible Reasons
- The image file may be corrupted
- The server hosting the image is unavailable
- The image path is incorrect
- The image format is not supported
Learn More →
Step.5
查看secret.html,在主控台輸入isAdmin = true將isAdmin改為true再按下按鈕或是直接更改網址前往flag.html
Image Not Showing
Possible Reasons
- The image file may be corrupted
- The server hosting the image is unavailable
- The image path is incorrect
- The image format is not supported
Learn More →
取得第三部分flag
Step.6
組合三段flag,完成
HackMD