# Task 16 - XML External Entity - Exploiting
## Task 16 \[Severity 4] XML External Entity - Exploiting
### Try to display your own name using any payload.
{% hint style="success" %}
**HINT:** No answer needed
{% endhint %}
### See if you can read the /etc/passwd
{% hint style="success" %}
**HINT:** No answer needed
{% endhint %}
### What is the name of the user in /etc/passwd
Reveal Flag 🚩
:triangular\_flag\_on\_post:`falcon`
### Where is falcon's SSH key located?
Reveal Flag 🚩
:triangular\_flag\_on\_post:`/home/falcon/.ssh/id_rsa`
### What are the first 18 characters for falcon's private key
Reveal Flag 🚩
:triangular\_flag\_on\_post:`MIIEogIBAAKCAQEA7`