All Rooms

Walking An Application

easy35 mintryhackme

Learn how to manually review a web application for security issues using only your browser's built-in developer tools — no scripts or automated scanners. You'll use View Source to find HTML comments, hidden links, directory listings, and framework info. Then use Inspector to bypass a CSS paywall, Debugger to catch a disappearing JavaScript element, and Network tab to intercept AJAX requests. Seven flags total across four browser techniques.

Skills You Will Learn

web-manual-testingview-sourcebrowser-devtoolshtml-analysisjavascript-debuggingnetwork-analysis

Walkthrough Phases

1

Deploy & Explore

Deploy the target machine and map out the web application

2

Viewing the Page Source

Find four flags hidden in the page source and server configuration

3

Developer Tools - Inspector

Use the Element Inspector to bypass a CSS paywall

4

Developer Tools - Debugger

Use JavaScript breakpoints to catch a disappearing element

5

Developer Tools - Network

Intercept AJAX requests using the Network tab

9 questions to answer

alienrecon start thm-walkinganapplication

Don't have AlienRecon? Get started here