Off Balance | CyberStart Completion

Intern

Hello World Mixed Up Messages Social Engineering Lazy Locked Login The Rocketeer 610enC0de'd Password Traffic Jam Start-Up Troubles Hextraordinary Maths at Light Speed Off Balance The Final Countdown

Headquarters L1

Social Secret Broken Banks Happy Customers Race To Where Mixed Messages Executable Secret Saesar Hidden Report Bike Fan Horrible Hats Tower of Wheels Binary Bike Lock

Headquarters L2

Decryption Ring Binary Bike Lock Secret Pages Too Much Text More Broken Bicycles Broken Link Hard Hash Encrypted Message Fingerprints Useful Hack Under Attack User Who

Headquarters L3

A Secret Rendezvous Lucky Throw Chopper Check-in Confused Secret Source Corrupted Route into the Router Password Postulation Snake Charmer The Competitor Revealed Big Transfer Dante In Command?

Headquarters L4

A Helping Hand Arnold Chopper? Photobomb Upgrades? Paaa! A Dangerous Contact Maggie's File Bendikke Loves Axes Phishing For Flemming Lockdown Lost But Not Forgotten Bad Kitty

Headquarters L5

Perplexed by Pixels Word On The Street Shinji's Drone Out Of Sight Zapped File Found Shopping For Secrets Perplexed by Pixels Yakoo Cars T-Shirt Trivia Baffled By Browsers Dangerous Comment

Headquarters L6

Rezapped Truck Stop Meeting Momoko Lost Key Running Man Heroka's DB Hush Fund Junya Who? QR.gif Custom Plates Still Hiding Brute Strength

Headquarters L7

Dot Dot Dash Hidden Boats Docking Port Pedro's Password Quick Drop Miguel the Moneyman Developer Disaster Breaking Bottles Bash the Botnet All Zipped Up Secret Spreadsheet Password Pickle

Moon L1

Programming 101 Handy Variables Converting for Fun Maths in Code Super Strings

Moon L2

Flow with Conditionals Logical Let's Get Functional Hooray for Arrays Going Loopy

Off Balance

Briefing:

We’re hot on the heels of catching this cyber gang but the closer we get, the more damage they try to inflict onto the Barcelona tourism industry!

This time, they’ve hacked into a large international bank’s mobile application. Customers of the bank are complaining they can’t see their current balance and these criminal masterminds need to be held to account. Intern, help customers retrieve their balances, so they can continue to spend their money during their well-earned holidays!

Helping our international friends will really help develop our network.

Hint:

If you check out the Network tab in the developer tools of your browser while you click on different pages in the app, you can see there are requests being made to an API. Try using a Linux command line tool like curl to talk to the API directly to see if you can get at the account balance that way.

How to Solve:

Open the Console.
Navigate to the Network tab.
Click on Transactions in the phone menu.
Right-click on get-transactions > Copy > Copy as fetch

In the console, paste the fetch (including all options) and change the URL from https://cloudninebank.com/get-transactions to https://cloudninebank.com/ and click enter.

fetch("https://cloudninebank.com/", {
 "headers": {
     "accept": "*/*",
     "accept-language": "en-US,en;q=0.9",
     "content-type": "application/x-www-form-urlencoded",
     "sec-ch-ua": "\"Chromium\";v=\"106\", \"Microsoft Edge\";v=\"106\", \"Not;A=Brand\";v=\"99\"",
     "sec-ch-ua-mobile": "?0",
     "sec-ch-ua-platform": "\"Windows\"",
     "sec-fetch-dest": "empty",
     "sec-fetch-mode": "cors",
     "sec-fetch-site": "cross-site"
 },
 "referrer": "https://play.cyberstart.com/",
 "referrerPolicy": "strict-origin-when-cross-origin",
 "body": "token=CNcsmXX5d50ZQCG5Us4twDi18awV",
 "method": "POST",
 "mode": "cors",
 "credentials": "omit"
});

Under Name (the list of all network requests), click on cloudninebank.com and go to Response.

{
 "data": {
     "endpoint": {
         "ref": "index",
         "protocol": "https://",
         "domain": "cloudninebank.com",
         "path": "/"
     },
     "user": {
         "id": "xgHof4h98"
     }
 },
 "links": {
     "get-accounts": "https://cloudninebank.com/get-accounts",
     "get-payments": "https://cloudninebank.com/get-payments",
     "get-transactions": "https://cloudninebank.com/get-transactions"
 }
}

Observe the links as there is no get-balances rather there is get-accounts.
Go back to the console and make another fetch to https://cloudninebank.com/get-accounts with the same headers.
Navigate to the Response tab once again and find flag, your flag should be there.

Answer:

postD4ta_w1zard

Improve this page