Flare on 2014 Challenge2

unzipping challenge 2 we get 2 files one html file and second a folder in which a images is present

Opening html file ignoring html and css portion jumping straight to java script we did not get anything usefull while digging into javascript we get image is loaded as php code “red warnning”

using floss to extract php code from image and redirecting it to a file

opening php code we get 2 array one is “term” and second is “order” basically a string is form by loop through order array and the number present at that value is replace with a string present in order array

scripting out the above process we get more php code which we redirected to another file

opening second php file we get a code . variable 1 and 2 is straight up base 64 and varible 3 is mix of hex and octal

decoding variable 3

cleaning up the code (basically decoding it )

we get hex and decimal encoded words

after decoding it and placing it in right place we get a flag but its in not proper format replaceing DOT DASH with special caracter we get proper flag