Here I’m going to give you a quick write-up for the challenges of National Cyber Drill 2021 that I was able to solve. I Hope you guys will find this helpful.

We’ve already publish two part

Check Here: National Cyber Drill Part-1

Check Here: National Cyber Drill Part-2

Web

CHALLENGE 1: LOCAL STORAGE : 50

In this challenge we are given with a webpage from where we have to find the flag. As the challenge title mention’s Local Storage & descriptions says “Search for flag in local storage!”, we can check the local storage in our dev tools to see if something interesting there.

Yes. In the local storage there’s a base64 encoded text. Just decode it & you’ll get the flag.

FLAG: cyb3RDr1ll{b3d724f45f8c283abff51ffa886bd8cf}

CHALLENGE 2 : UNPACK JAVASCRIPT : 50

In this challenge we are provided with a webpage. As the challenge title says, Unpack JavaScript, it means we have to do something with JavaScript.

If we see the source code, we can see a lot of JavaScript codes. At the end of the file we can see a comment that says, “Decode this JS file to get Flag ”. In the comment we are given a JavaScript code with encoded eval function which is not really understandable by newbies. Let’s decode the js. I am going to use [ https://lelinhtinh.github.io/de4js/ ] this site. After decoding the eval we get our flag.

Flag : cyb3RDr1ll{579dce4d7644138296976adac86a2f98}

CHALLENGE 3: DECODE PHP : 50

In this challenge we have to decode a strings which is a php script. The strings is provided in the web page. If we just take the encoded string & paste it to cyberchef you’ll automatically get the flag.

FLAG: cyb3RDr1ll{95d09bebe9c36799113296b5d9432c72}

CHALLENGE 4: DECODE JS : 100

In this challenge we have to decode an encoded string. The webpage provides us the encoded string file location. Going to that location, we can see a lot of special characters. It is JJencode. So let’s just decode the strings with JJencode decoder & get our flag.

Flag : cyb3RDr1ll{JAVASCRIPT_IS_FULL_OF_SURPRISES!!!}

CHALLENGE 5: SYMBOLS CAN DO THE MAGIC : 100

In this challenge again we are provided with an encoded string. The webpage provides us the encoded string file location. Going to that location, we can see a lot of special characters. It is JSFuck. So let’s just decode the strings with JSFuck decoder & get our flag.

Flag : cyb3RDr1ll{WRITE_AND_EXECUTE_CODE_BY_USING_ONLY_SIX_CHARACTERS!}

That’s it. I hope you’ll find this blog really helpful. Don’t forget to share your feed-backs in the comment section below and stay tuned with us for more interesting challenge walkthroughs.