this challenge teel us use id as parameter, so i added
and i try to check what i look like on id=1


and id=2


so i decide to use bash to check all the possible id, and i found the flag

```
for x in {0..100};do curl "simplesql.darkarmy.xyz/index.php?id=$x" | grep Username;done
```


> Flag: darkCTF{it_is_very_easy_to_find}

[my blog](http://medium.com)