Forum Discussion
Trick or Treat on Specter Street: Widow's Web
I am very stucked in Trick or Treat on Specter Street: Widow's Web I can't do none of the questions, but in any case I start by 4th that is the first answerable one Your first task is to simulate t...
PRABAKARANRAMAMURTHY
Advocate
AdvocateHi all. Did anyone managed to solve Q4: Inspect the output in Lab-Files. What is the token?
Checked all the output txt files in Lab-Files folder but could not find anything. Any hint?
PRABAKARANRAMAMURTHY Hazzie Did you guys figure this out? Im not sure if anything changed for permissions.. Here is what I have in my notes, hope it helps!
From Post 1:
• crypt → /crypt
• warden → could be part of a path
From Post 2:
• drafts → /drafts
• rituals → /rituals or /drafts/rituals
• witch-secrets → /witch-secrets
From Post 3:
• admin → /admin
From Post 4:
• vault → /vault (we already have this)
• uncover → could be a hint
curl http://127.0.0.1:3000/crypt
curl http://127.0.0.1:3000/drafts/rituals
curl http://127.0.0.1:3000/witch-secrets
curl http://127.0.0.1:3000/admin
Could try accessing these in Firefox to see them better:
firefox http://127.0.0.1:3000/crypt &
firefox http://127.0.0.1:3000/drafts/rituals &
firefox http://127.0.0.1:3000/witch-secrets &
firefox http://127.0.0.1:3000/admin &
cd ~/Desktop/Website-Files
nano robots.txt
Add these paths:
User-agent: *
Disallow: /crypt
Disallow: /drafts/rituals
Disallow: /witch-secrets
Disallow: /admin
Save and exit (Ctrl+O, Enter, Ctrl+X).
Now run the malicious crawler:
cd ~/Desktop
malicious-crawler
cat Lab-Files/malicious-crawler.txt
