Challenge - Week 11

Hjelp! (Ukas utfordring)

Bjørn Johansen forteller at han har oppdaget en sårbarhet på bouvet.no, men hvordan skal han vite hvem han skal rapportere det til?

This was a challenge to make everyone aware of the security.txt proposed Internet-standard which is already widely deployed.

Solution

Visit https://bouvet.no/security.txt or https://bouvet.no/.well-known/security.txt.
In there, we can find:

Contact: mailto:ciso@bouvet.no
Hiring: https://www.bouvet.no/bli-en-av-oss
# Flag: BVT{bjornjohansen066-was-here}

The flag

BVT{bjornjohansen066-was-here}