Just A N00B Thinking

Here how I found reflected XSS in Simplybook.me

In this walkthrough i’ll show you how i find 7 flags, this CTF is provided by Silexsecure and his team. A big thanks to you guys :) So the very first approach of every CTF is that, you should know how to gather information, read every small info related to CTF, this would help you to solve machines. In this CTF information gathering is playing a very important role. In this VM we have to find 7 flags and some data through file. Let’s the game begin, but before starting the CTF make sure you have done proper network settings in VM. Flag 1- The very first thing, do some information gathering, so i started looking at source code and at the last of source code i found some information. As you can see here i found some scripts. So i start looking at every script which is related to this CTF. But the attention i got in which script that was the  base64 encoded code “RmxhZyAwIChuZXRkaXNjb3Zlcik=" this code was include with script tag. So i found something fishy here,