recon_26 (JS)
Last updated
Was this helpful?
Last updated
Was this helpful?
View the exercise here: PentesterLab: Recon 26
OBJECTIVE
For this challenge, your goal is to look at the server used to load assets (JavaScript, CSS) and find a hardcoded key in one of the JavaScript files.
WHY?
It's essential to inspect JavaScript files for hardcoded keys.
SOLUTION
When we View Page Source of hackycorp.com, we’ll see the Javascript files in this format //assets.hackycorp.com/js/…
Click all three links with the prefix mentioned.
We’ll see the flag in the //assets.hackycorp.com/js/script.js
