An aspiring engineer started learning web development on Youtube a day ago and he was asked to build a nice, secure, simple login page as part of his project. Well, he just started off so don't blame him. Go, hack!
First take a quick look in html source code
==> flag.css ??? Bla bla bla I do not care about this file
==> main.js ???
I have user and password :)
But it not necessery because after that is a html page “secureflag.html” ==> http://220.127.116.11:23478/secureflag.html
I got an image
Using HxD to analytics