jellyCTF

Super_fan [957 pts]

Writeup author: lolmenow

Difficulty: hard

Provided files: N/A

Description: this guy is like some kind of jelly superfan or something… what a weirdo. he deleted all his old tweets and changed his username, can you find his new handle? Note: unrelated to the stalknights challenges

@j3llyfan7

We are given with a twitter handle and know that this user has changed their username, NOT deleted their account. Lets check the wayback machine and see if this twitter page has been archived in the past.

In fact, it has been archived!

Lets try to open one of the old archives and see the contents of the page.

It takes a while, but twitter will not allow us to view the profile unless we login. This would just be time consuming as this is an archive of the page.

I was stuck for a while, and started reading twitter’s documentation about this and how to get new twitter handles.

Then, I stumbled across a quora article where your twitter ID is actually static and does NOT change even if you change your username.

Question is, how can we get this ID?

I did some more research, and realized that the profile banner actually contains their ID! Since we have an archive of the page, we can grab the image link (profile banners are stored under the pbs.twimg.com domain, so right click the profile banner and click “copy image link”) and see the before twitter asks us to login!

Once doing so, we get this: https://web.archive.org/web/20240329134833/https://pbs.twimg.com/profile_banners/1772301250572263429/1711456007

1772301250572263429 is the twitter ID!

Using a website to reverse twitter ID (eg: https://commentpicker.com/twitter-id.php) we can get the new twitter username