search

Day 3

hashtag
What is the name of the Registrar for the domain santagift.shop?

whois santagift.shop |grep -i registrar
circle-info

Namecheap Inc

hashtag
Find the website's source code (repository) on github.comarrow-up-right and open the file containing sensitive credentials. Can you find the flag?

Repo link

LogoGitHubGitHubchevron-right

circle-info

{THM_OSINT_WORKS}

hashtag
What is the name of the file containing passwords?

circle-info

config.php

hashtag
What is the name of the QA server associated with the website?

In the README.md description shows:

circle-info

qa.santagift.shop

hashtag
What is the DB_PASSWORD that is being reused between the QA and PROD environments?

Inside the config.php website we can find the DB_PASSWORD variable with the value:

circle-info

S@nta2022

PreviousDay 2NextDay 4

Last updated