Tags: web source_code warmups 


# Glasses


When checking the source code of this web application, I noticed a large blob in the HTTP response in BurpSuite:


Scrolling all the way down, we can see it's actually javascript. I tried multiple ways to run it, in the browser console, beautifying it and running it in online parsers but the output was too large and I couldn't get all of it.

So I resorted to saving it locally in a file and changing it a bit to print the code:


Then I used node to run the javascript and redirect the output to a file. Again, there was a lot of content (garbage) but doing a simple CTRL+F helps us find the flag:



Original writeup (https://github.com/LazyTitan33/CTF-Writeups/blob/main/Nahamcon2023/Warmups/Glasses.md).