/assets/js/site.js
that says // Image slideshow. Moved in from /new-images when each is finalised
./new-images
shows a list of pictures. Checking each picture to see if the flag is hidden using steganography tricks yields nothing./new-images
were unique. The image of the macbook with the screen showing "mii-home" got some matches, but none of them had the "mii-home" graphic. Going to /mii-home
shows a login page./mii-home
are validated using login.js
. We can deobfuscate it with de4js to get the output in login.js. We can run lines 1-18 in the JS console (only if not already on /mii-home
) and then define j to hl_b with j = hl_b
. Finally, simply run line 28: window[j(0x73)] = 'se' + 'curi' + 'ty-' + 'ca' + j(0x7d) + '/f' + j(0x70);
. This will redirect to /mii-home/security-camera/feed/
.XGHEV7HGEV
, which is the flag.XGHEV7HGEV