Security through Obscurity Challenge

Hello folks,

recently i learned about the concept of Security through Obscurity in my Introduction to security class.

Security through Obscurity is basically the equivalent of putting your keys under the doormat, you know theres a vulnerability but you hope that an potential attacker wont notice.

I created a small challenge similar to the one i got in my class, try it out - it probably wont take you long to solve it:

Hope you enjoy it! Tell me how it went!


I don’t know if this is even security through obscurity, this challenge was barely obscured :smile:

Great to inform people about this though!

thanks for your feedback, maybe i will make a somewhat more difficult followup challenge :slight_smile:

I think you have an error in your SEC.html:


Uncaught TypeError: Cannot read property 'c' of undefined

thanks @jenovs - should be corrected now. :slight_smile:

Now it works.

By the way unescape() is deprecated and you don’t need language="JavaScript" in your script tags.

And Security By Obscurity is bad especially if your code is on GitHub :wink:

nice solved it … just finished binary agents challenge this morning so that helped lol

Quite enjoyed that, but i can’t go any further :thumbsup:

You might like this:

1 Like

Enjoyed it soo much. @Horv87 Thanks for sharing this informative puzzle. :slight_smile:

Your sentence suggests you didn’t cross level 2. Am I right? :smiley:

haha thought that was it

1 Like

Maybe this hint helps. :slight_smile:


paste this to console. And boom answer to final level.

String.fromCharCode(83, 69, 67)+".html";