weCTF 2020 Challenge: dont-bf-me

$recaptcha_resp = json_decode(file_get_contents($RECAPTCHA_URL.$_GET['g-recaptcha-response']), true);//we need recaptcha_resp["success"] to be true
if(!$recaptcha_resp || !$recaptcha_resp["success"]) {
echo "Bad recaptcha :(";
die();
}
//we need the score to be larger than 0.8
if ($recaptcha_resp["score"] < 0.8) {
echo "Stop! Big hacker";
die();
}
// check password
// here is only double equal
if($password == $CORRECT_PASSWORD) {
echo $FLAG;
} else {
echo "Wrong password :(";
}

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store