# The Sign of Four

| | |
|---|---|
| **Event** | Pwn2Play: Core Incursion (2026) |
| **Category** | Web · four parts (I–IV) |
| **Difficulty** | Varied |
| **Author** | T.Λ.R.S |
| **Flag format** | `P2P{...}` |
| **Hosting** | External, the DMUHackers website |

## Description

> Something has been left behind on the DMUHackers website. Not one message, but four.
>
> Each mark belongs to a different layer of the site. Some sit where a visitor might
> never think to look. Some are only visible when the page gives itself away. Others
> require a more deliberate form of questioning.
>
> There is no fixed order. The evidence may surface differently depending on how you
> inspect the site. Follow the traces. Recover the four signs.

## Objective

Recover all four flags by inspecting different layers of the site and interacting with
its functionality.

## Rules

> Solve using only manual browsing and source-code inspection. Automated scanning,
> brute-forcing, fuzzing, or disruptive testing is prohibited and not required.