0 / 5 completed
Level 1: View Source
ACTIVE
Every good hacker starts somewhere. The first flag is hidden in plain sight...
or rather, hidden in the source. Where developers leave their secrets.
Hint: Right-click isn't just for copying text.
Level 2: Inspector Gadget
LOCKED
Not everything on a webpage is what it seems. Some things are hidden in plain sight -
invisible to the eye, but not to the right tools. This section contains a secret,
but you'll need to look deeper than the surface.
Hint: What you see isn't always what you get. Inspect more carefully.
FLAG{inspect_element_pro}
Level 3: Console Cowboy
LOCKED
Real hackers don't just read the page - they talk to it. The browser's
developer console is your command line to the web. Some secrets live only in memory,
waiting for someone to ask the right question.
Hint: Open the console. The secret is already loaded.
Level 4: Decoder Ring
LOCKED
Encoding isn't encryption - it's just a costume. The following string contains
your flag, but it's wearing a disguise. Can you unmask it?
RkxBR3tkZWNvZGVfbWFzdGVyfQ==
Hint: This encoding scheme uses 64 characters. You might say it's... base-ic.
Level 5: Breadcrumbs
LOCKED
The final challenge. Not all secrets are on the page itself. Sometimes you need to
look at what's around the page. Servers often have files that aren't linked
from anywhere - but they're still there if you know where to look.
Hint: Robots know things. And sometimes they leave notes at /hack/secret.txt