Questcon 2023 | Web

Challenge 1: Pirate’s Hidden Treasure

The challenge says hidden treasure, lets try burp suite: Repeater.

Since it says “You should have a pirate browser to access this site!”

Lets change the useragent to pirate, we get:

We get: You should come from the ship Black Perl to access this treasure!

So lets change the referer to Black Perl, we get:

Since It says prove your identity, Lets change Cookie: user: jack sparrow

We got it!!!

flag: QUESTCON{Thr33_k33p_a_s3cr3t_if_2_of_th3m_ar3_dead}

Challenge 2: Cursed Treasure

Lets see the source code of the site

The values of map id seem suspicious.

After digging into it, I found they are encrypted in sha224.

Lets decrypt them

I used: https://10015.io/tools/sha224-encrypt-decrypt

and found that the id’s for Map 1, 2 and 3 are 1, 2 and 4 respectively.

3 is missing so, lets encrypt 3 in sha224 we get:

4cfc3a1811fe40afa401b25ef7fa0379f1f7c1930a04f8755d678474

Lets try https://questcon-cursed-treasure.chals.io/maps.php?id=4cfc3a1811fe40afa401b25ef7fa0379f1f7c1930a04f8755d678474 in the browser

Now, we have to guess the username.

Lets try Barbossa

We got it!!!

flag: QUESTCON{Th3_Pir4t3s_0f_Th3_Car1bb34n_Arr_Th3_B3st!}

Challenge 3: Web Explorer’s Journey

The flag is given in the site i.e.

1021089710312384101115116957010897103125

But lets inspect more.

In the html we can see that the value of flag is different i.e.

81856983846779781238751669551888076488251829549839552875183487751125

I found that it is in ascii

After decoding, we get the flag!!!

flag: QUESTCON{W3B_3XPL0R3R_1S_4W3S0M3}

All the best for the next challenges.

Feel free to connect with me on discord;

Id: k4m154m4