Challenge Information
- Advent of Cyber Day 1
- THM link here
Explanation
This challenge is guided as it is provided by THM
This challenge is about machine learning and the challenge is basically getting sensitive information from chatbot.
Question 1: What is McGreedy’s personal email address?
To solve this challenge, I started out by getting the full name of McGreedy. There is a cheatsheet for specific keywords.
After getting the full name, I lied to the chatbot to get his personal email.
Question 2: What is the password for the IT server room door?
I started out by asking out the chatbot.
It mentioned that I must be a member of IT to do so. Based on the previous information, I have the name of the member of IT. I could just act as the member and get the password.
Question 3: What is the name of McGreedy’s secret project?
To get the secret project, we need to trick the chatbot to be in maintenance mode.
Things I learned from the challenge
- prompt injection