hack_it is an Online Contest where participants try to apply certain hacks/tweaks/googling skills to solve a problem.
- February 2018 was the first time this contest was organized.
- This Repository contains the entire source-code of the Online Interface via which the participants took part in the contest.
- This repository also contains the problems asked in the February 2018 Contest.
- Answer: lccfossbytes2018
The password was present in the page source of the question page.(check here)
- Answer: hackit
There were sets of 8 bits binary numbers displayed, which when converted to ASCII would give the password.(check here)
- Answer: 766767
A string 'lcc' was displayed at the top left corner of the page, and there was a number spinner which was to be set to the answer, which is the ASCII number equivalent of 'lcc'.(check here)
- Answer: lrs72x7lgtc
The Video ID of the embedded video.(check here)
- Answer: kalilinux
There was a hidden string in the blacks of the Black Panther Image, which on manipulating the image would be revealed.(check here)
- Answer: applepark
Google Maps Coordinates to Apple Park were given in the question.(check here)
- Answer: antmanandthewasp
An SVG Image was put in the webpage, which upon zooming in would reveal the above string.(check here)
- Answer: rainbowtable
An MD5 hashed string was given which upon unhashing would lead to the answer.(check here)
- Answer: valarmorghulis
An audio playing a morse code was given which upon decoding would give the answer.(check here)
- Answer: (Not really)
Ths level just contained a dino game in which when you score > 1000, you'll get promoted to next level.(check here)
- Answer: 2568
A code snippet written in BrainFuck, which would just translate to "How many digits are present in 1000![factorial]?". (check here)
- Answer: password123$
There was a link to a zip file hidden in the page source which contained the password.(check here)
- Answer: tplink
There was an image of a router with MAC Address, which maps to TP-Link.(check here)
- Answer: googledns
The image when broken down we get 4 8s, giving us 8.8.8.8, which is Google's Public DNS.(check here)
- Answer: f96392f8e4b970960e504c75bb037a73da2c1029c55442c281f38efc3815a3a1
There was a file whose SHA256 value needed to be calculated based on the clue-text provided.(check here)
- Answer: pnrfnepvcure
After decoding the image, one must apply ROT13 on the string "caesarcipher".(check here)
- Answer: (Unique answer for each user)
The URL was to be appended with "?key1=0&key2=1&key3=1&key4=0" to match one-bit XOR output through the keys.(check here)
- Answer: garymckinnon
The first image is of american actresses and comedian Kate McKinnon and the second is of a TV series called Army wives. Combining these both and some searches will lead you to the answer Gary McKinnon who is known to have caused "the biggest military computer hack of all time.".(check here)
- Answer: 08cae8c86f6509c5d3c7f4b2458f2c8c37f27cc656a58fc8c8ac208f0174e773a2d7d2c24a997ae8a3a24a9bcfc9be03dcfadcdae23a0449c4ba9ae9a5b91c0c
The SHA256 hash value given in the question, when looked up on Google gives the file to which it belonged. The files was to be downloaded and SHA512 of the same was to be calculated and the hash key generated was the answer.(check here)
- Answer: (not really)
Just changing the URL from 20.php to 21.php would level up.(check here)
- Winner Page
This page marked the end of the contest.(check here)