Description
We were given a link to a website linked to the Google Maps API.
Resolution
When we opened the website for the first time, we got an error message.
It was something like “You aren’t close enough to get the key”.
This message was shown at the location closer to us.
There was 8 locations on the map, so we have to visit all theses locations 😀
It’s possible to fake the geolocation API, it’s inside the web browser !
GPS coordinates are in a javascript code inside the source code:
//This location has the third flag character var mitreBedford=new google.maps.LatLng(42.504901,-71.236543) var bedfordMessage='Mitre Bedford: Maybe you can get one of the employees to go here and give you the flag? No, that would be annoying to them.' //This location has the sixth flag character var notreDame=new google.maps.LatLng(45.5045,-73.5563) var notreDameMessage="Notre-Dame Basilica: You could always ask your Canadian girlfriend to get the flag." //This location has the eighth flag character var parisVegas=new google.maps.LatLng(36.112890,-115.171282) var parisVegasMessage="Paris Hotel in Las Vegas: I'm sure there are some DefCon stragglers who could help you out." //This location has the seventh flag character var antarctica=new google.maps.LatLng(-80,10) var antarcticaMessage="You know researchers in Antarctica, right?" //This location has the first flag character var bermuda=new google.maps.LatLng(25,-74) var bermudaMessage="I guess you could get here in a helicopter or boat... Isn't that in the Bermuda Triangle?" //This location has the fifth flag character var sydney=new google.maps.LatLng(-33.8587,151.2140) var sydneyMessage="Sydney Opera House: You got any Australian mates?" //This location has the second flag character var northkorea=new google.maps.LatLng(39.1164, 125.8058) var nkmessage="North Korea: I would strongly recommend NOT going here. Wonder how you could get the flag though..." //This location has the fourth flag character var moscow=new google.maps.LatLng(55.7500, 37.6167) var moscowmessage="Moscow: In Soviet Russia, flag get YOU."
We used Chrome to modify our location, for example mitreBedford (42.504901,-71.236543):
And it gave us:
“You are near MITRE Bedford. Have a flag piece! C”
We repeated the step for the 7 remaining places.
After reordering all the flag pieces :
You are in the Bermuda Triangle. Have a flag piece! 7
You are in North Korea. Have a flag piece! F
You are near MITRE Bedford. Have a flag piece! C
You are in Moscow. Have a flag piece! 9
You are near the Sydney Opera House. Have a flag piece! 0
You are near the Notre Dame Basilica. Have a flag piece! 8
You are in Antarctica. Have a flag piece! F
You are near the Paris Hotel. Have a flag piece! A
=> 7FC908FA
Flag was : MCA-7FC908FA