daffainfo
/
ctf-writeup
mirror of https://github.com/daffainfo/ctf-writeup.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
ctf-writeup/2023/EKOPARTY CTF 2023/Future
History
daffainfo e6c48e50f1 feat: grouped the challs 2024-01-09 16:59:32 +07:00
..
images feat: grouped the challs 2024-01-09 16:59:32 +07:00
README.md feat: grouped the challs 2024-01-09 16:59:32 +07:00

README.md

Future

You are not allowed to escalate this problem! the root cause as usual is some kind of validation failure, may we have this issue in the near future?

About the Challenge

We need to pentest the gopher protocol to obtain the flag

How to Solve?

The gopher protocol is vulnerable to Directory Traversal attack, where we can read the flag by accessing ../../../root/.flag.txt

flag

EKO{r00t_was_pwn3d!}