Note: If you're interested in actually doing these challenges, check out this post on how to get the environment set up.

This was any easy one - Snoop around the html source code on the login page. You’ll find a HTML Comment around line 99:

<!-- X marks the spot -->

We notice that it’s Base64 looking. We decode this as base64:

>>> print(str.decode('base64'))