This content explains how to activate the hidden scoreboard in the Juice Shop web application by inspecting the browser's developer tools and analyzing the source code.
Mind Map
Click to expand
Click to explore the full interactive mind map • Zoom, pan, and navigate
okay everybody now that we have the
juice shop deployed uh one of the first
things we have to do is activate the
scoreboard to see all the different
challenges that may be available um
um
as you see in this instance of the dew
shop i have this scoreboard link right
here uh this is an old instance that's
no longer active but
within this particular juice shop i was
able to activate the scoreboard i'm
going to show everybody how to do that
right now
so let's start off here i'm going to go
to here
and i accidentally just activated it
like a big stupid jerk
but that's okay let's uh go ahead and
just start off from the beginning so
the scoreboard is hidden um if you left
click over here and you haven't
completed this challenge yet uh we're
gonna show you how to get it so
for starters uh depending on what type
of browser you are using you're gonna
wanna inspect the source code uh using
dev tools
uh devtools is usually accessed by
hitting the f12 key on your keyboard or
by accessing your menu for your browser
in this example i'm using the firefox
web browser
and then you can easily find
and you could do basically web developer tools
tools
or alternatively like i said most
browsers just like
let you hit the f12 key so i'm hitting
the f12 key
so now that i am in um
the web
development tools um inspecting code is
usually one of the first things you do
on any website just to see if there are any
any
oddities or anything like that you don't
have to be a codemaster uh to kind of
figure out a lot of this stuff but it
does help to have a solid background in
html and javascript
to you know figure out what you're
looking at
now i will say this um
um
often uh
well i shouldn't say it shouldn't it
doesn't really happen so much anymore
but in the early days of web
applications uh there used to be
different comments in the code uh that
would like maybe reveal things that
really shouldn't be there maybe like an
admin link or
uh you know sometimes like there's been
known cases and again this is going back
a long way where there was a type of
like password that was defined
because in the early days of web
applications nobody really anticipated
any standard user uh being able to open
uh the development tools and look at the
source code or view the source
nowadays it's pretty common practice so
so
how do we find the scoreboard well uh
much like kind of that example i was
given earlier uh this
there was no link
with to the scoreboard on this web
application um so
you know
sometimes what happens is you know
somebody will post something up on a web
application and then you know somebody
goes oh no take that down we really
shouldn't have it there but it's still
accessible in some format you just don't
find a link to it
so now what we're going to do is look
for a link to the scoreboard so to do
this i'm going to click on the debugger
and i'm going to click on sources
and i'm going to locate
the main es
2018.js file okay i'm going to double
click on that
and then from there i'm going to hit
this little pretty print source so this
is going to take all this code that's here
here and
and
well make it a little more readable hopefully
hopefully
so now that i have that um what i can do
is i can do a search for
for uh
uh
basically the scoreboard i know i'm
looking for the scoreboard so i'm gonna
i'm going to hit ctrl f to initiate the
search function
now i can see references to the
scoreboard here but again if you're just
starting off you're not going to see the
scoreboard listed anywhere and that is
one of the challenges
i'm going to work my way backwards
looking for each iteration of score and
what i'm looking for is basically a
code that references router link and
router link um
um
for those of you that kind of know web
applications um it's kind of like a
h reference tag but you can't really use
it directly in html so
it's basically a mapping to another site
and that's maybe an easy way to think of it
it
so let's see if we can find anything
that mentions routered link with a
so i'm going through and i'm working my
way backwards you could work your way
forwards it doesn't really matter again
we're just kind of looking oh look at
that open scoreboard
and we see that we have scoreboard here
with a router link so now what this is
telling me is basically that
hit that
and now i have access to scoreboard if
it's your first time accessing the
scoreboard you guys see some little
fireworks here and you'll notice that
you have a challenge completed one out
of 12. okay
okay
to see all the different challenges uh
within this first level
you just click here if they're not
already active okay
our goal uh throughout this course is to
get through at least these first 12. um
i challenge you to maybe go on later on
and uh find
the higher levels and they get
more difficult
as the level goes up
scrolling down i see that i now have
and
basically it tells us it was a code
analysis and a tutorial
if we click on here it tells us
basically hey find the scoreboard right
so all good stuff there um
i'm gonna close this and that concludes
Click on any text or timestamp to jump to that moment in the video
Share:
Most transcripts ready in under 5 seconds
One-Click Copy125+ LanguagesSearch ContentJump to Timestamps
Paste YouTube URL
Enter any YouTube video link to get the full transcript
Transcript Extraction Form
Most transcripts ready in under 5 seconds
Get Our Chrome Extension
Get transcripts instantly without leaving YouTube. Install our Chrome extension for one-click access to any video's transcript directly on the watch page.
