search

ctfs / write-ups-2014

Wiki-like CTF write-ups repository, maintained by the community. 2014
1.83k stars 649 forks source link

Ghost in the Shellcode 2014: phpcrypto #7

Closed mathiasbynens closed 10 years ago

mathiasbynens commented 10 years ago 
curl 'http://phpcrypto.2014.ghostintheshellcode.com/crypto.php' --data 'function=dump' > source.html
20:04:11 <phiber_> godmode_, use function dump to get the source, then set debug arg and inject php code in plaintext var
blankwall commented 10 years ago

Little more detail on the php code injection?

blankwall commented 10 years ago

well if you do http://phpcrypto.2014.ghostintheshellcode.com/key the flag is there so I assume some sort of ls or directory dump would be needed.

mathiasbynens commented 10 years ago

http://tasteless.se/2014/01/gits-2014-phpcrypto-recon-100/

mathiasbynens commented 10 years ago

Hope you like it, @blankwall: https://github.com/ctfs/write-ups/tree/master/ghost-in-the-shellcode-2014/phpcrypto#ghost-in-the-shellcode-2014-phpcrypto Thanks for the help!