Launch Date - SMP CTF 2024 - Selection Round

Posted on by rahisec

As the challenge asked about product launch, i assumed that it might be in the home page of their website: mentioning product launch date. so i tried to look for packets where product launch is mentioned. So i searched keyword launch in wireshark. And luckily i got a hit.

I open the tcp stream and confirm it exits. and interestingly i found there a sql query also, which came handy in injection challenge.

The scenario was after gaining access to managers account the hacker crafted a sql query in sender parameter. and therefore it may leaked a list of messages.

However, i was thinking about 31st ... hmm..interesting... then it must be 31st December 2024 as we were playing this ctf on this day.

And yep.I was right! it was the flag....