DUCTF2022 / dfir – Shop Challenges
Here are the flags and the walkthrough Shop-Knock Knock Knock Okay then, this should be something easy… lets look for a bunch of logins from the same ip. You could use something like this or even look into the file… cat DownUnderShop.JSON# | jq '. | .origin, .url' | grep -B1 login Then you will see, that the IP of