 How's it going everybody my name is John Hammond and we're looking at girls go cyber start. This is the second video in the series I'm in my car at work because that's apparently the only good place where I can record now So let's dive right back into it This is some small simple kind of easy at least granular and difficulty very very good trajectory and what you're learning and what you're playing with because it's meant for high school students meant for high school girls and I'm neither of those things But we're doing it because it's fun and good internet content Hello world is challenge three blows an about me page for a well-known hacker How would a hacker why would a hacker display all this information about himself? Good question? It's a red herring. However, there's one secret weird way to contact him Manage to inject in the page an email address if you find it, that's the coding to solve the challenge. So Send me an email address send me an email Does that do anything? That doesn't do it. Oh, whoa, I highlighted and I found stuff. Why is that? Sorry, that was too real. I don't even know if I like that. I can't even that's I don't know how much challenge That really is let's let's make a directory zero three. Hello world Complete apparently because that's all we really needed. I highlighted it on accident. I was gonna like view the source I was gonna do some real real stuff. All right, that's the correct code. Sweet. Let's go challenge for Text mountain not all secret codes hidden by hackers need to be encrypted to be hard to find take this one example of a hacker Who really loves books so much so that he hides secret codes within them the most of the meticulous forensic investigators Only the most the meticulous forensic inventors could find words. I'm not gonna read these anymore. That's stupid blows an extract from recent sample Can you find the secret code? Do I have to highlight text in this too on the geological success of Organic beings that is that's what girls go cyber service all about right these interesting puzzles some of them are Fun some of them are silly trying to determine what this is it you might be staring in my face. Oh Secret code Matt Kalu. Why was that there? That's What was the name of this challenge? text mountain Make directory zero four text mountain. I can't even like like I could just note like a little oh solution Text and then take so like oh, it's just in the thing, but you know Is it worth it lazy locked login the Internet of Things is a big deal these days And we recently came across a hacker who loves hacking everyday household devices like coffee machines and fridges One fridge he hacked has a remotely accessible page allowing a technician to control it The username and password easy to find but the form still has some very lazy extra protection. He managed to get around it. Can you oh Last pass. I'm glad you're here to help dude Can I see with this? Enter what? What is this? Is that a oh, it's a fridge. It's literally a fridge And just get around it enter Hit the space hit space Technician access only admin What what is the password if I view the source of that page? Does it say it value equals password? So admin is password developer notes. This will be disabled if not access from the technicians laptop. I have to Run this Can I do that? Oh, I guess I could just change it in The developer notes or I could just kind of run that right. Yeah, okay So what I was thinking is if I modified it within the inspector of developer tools like made that button enabled That would allow me to click it or I could just copy the JavaScript value that it kind of needed to be able to Display that so there we go that we logged in that was fun. That one was interesting Make directory zero five lazy locked login daily lock login complete No flag Dot text and let's drop down a solution dot text Change the elements in HTML to be enabled Submit elements with dev tools whoa caps lock or Just copy and run the JavaScript code in the console good enough. All right. Let's keep rolling Missing puzzle piece whoa meet puzzler a hacker who loves her puzzles in fact She loves them so much to use in the hide secret codes you find a way to complete the puzzle below and get the secret code What is the puzzle? What What am I what am I doing I can't click or drag any of these what is this This is a medium difficulty challenge, and I'm just struggling hard piece 6 It's all work fine ID parent The office getting the below JavaScript is not part of the challenge. I dig the it Make these a little bit visible for you guys attempt flag with a value the puzzle below Are these images like? Something that I should work with oh no no What the heck was that did I not see that all along I'm probably stupid What is that is that supposed to be there? puny You see am I you're seeing that too, right? This is weird man. Do I have to download these I? Feel like I have to download these Seven eight nine Let's do it make directory. This is challenge six right zero six missing puzzle piece. Oh It's a missing puzzle piece therefore. I have to get number ten right Or number nine actually where why was a number nine visible? Was it supposed to be the fudge? So six is the one that's visible isn't visible Display equals none. I should have read that do I have to make it? Not Invisible Search for zero six zero six zero six Hello Let's display equals none. Let's make that displayed. Oh Oh, you sneaky dog It was plain text that I could I have highlighted that? Like is that all I needed to do I know flag dot text put that there if I refresh that page Like will it give me the real thing again. Oh, I wouldn't have even been able to do that What is it that is that challenge? That's got to be something that's actually obfuscated move flag dot text to zero six Blah blah blah CD zero six cat flag cat flag challenge Yeah, what is that? so That's that's obviously like a rot 13 something echo this For I in one two two twenty six. Let's do a quick Caesar Cypher brute force Caesar. I Done What is that is that rot 13? Hello All right screw. I lost my command history when I really wanted it. Is that what 13 it is rot 13? Wow I'm stupid. Maybe I guess I could have just checked that out originally, but All right, man Going on nine minutes here. Let's check it out. Let's get one more challenge. Oh seven lights out an Infamous fact an infamous hacker who goes by the name of light bulb is as you may have guessed Obsessed with many kinds of different lights so much so that he is hacked in with his local cities main control system and decided to turn off all the street lights Oh, wait, this is a URL thing. Can you figure how he did it? Turn them all back on Strange thing is if you need an access there's no bit until I'm all off all at once So it's just a URL and there are nine of them, right? Let's get dev tools out of here. You can see this one two three five five six seven eight nine Ten and let's go to twelve All lights are on Yeah All on equals true. Yeah, what is that was supposed to do, right? so much so And a strange thing is even if you get access system, there's no button to turn them off at once Turn them off on by one So I have to turn them all off equals true Yeah, okay. That was a weird guess. I don't know if I could have a mess with that whatever Glow and set in let's put that in challenge seven lights out like directory zero seven Challenge lights out. Oh, I should have made that complete. Okay. Good. I'm glad I got the command wrong complete and a flag Dot text and a solution Change the URL variable to all Off equals true Yeah, sweet. That's that let's call it quits here because I think we're over 10 minutes now And that's been fun and enjoyable. If you did like this video, please do like comment and subscribe This is kind of a fun series you go really don't have to like comment subscribe if you don't want to I'd be grateful though It would warm my heart give me the warm and fuzzies Please do join our discord server. It's there's a link in the description. It's an awesome community full of Awesome people and it's just awesome. So I'm really bad at this outro roll the b-roll thing