Tags: web
Rating:
First off ran nmap on 138.247.13.115 to get open ports (as always for recon), noticed that certificate was for something different in this case 138.247.13.115.xip.io
nmap on just port 443
Nmap scan report for 138.247.13.115
Host is up (0.19s latency).
```
PORT STATE SERVICE VERSION
443/tcp open ssl/http Caddy httpd
|_http-server-header: Caddy
|_http-title: Site doesn't have a title (text/plain; charset=utf-8).
| ssl-cert: Subject: organizationName=Caddy Self-Signed
| Subject Alternative Name: DNS:138.247.13.115.xip.io
| Not valid before: 2019-02-23T17:54:26
|_Not valid after: 2019-03-02T17:54:26
```
so headed to https://138.247.13.115.xip.io accepted security exception
Yay flag!
> Flag is: MCA{shuHeimoowaiF5a}
