DESCRIPTION
It is suspected that at least one hacker operates from inside the country.
This allows the police to take action.
The suspect is advertising his hacking services on the online forums.
Could there be a possibility to extract additional information from his homepage?
Find the vulnerability and read the flag from /flag.txt http://localhost:1000
Challenge created by CTF TECH.
You need to have Docker for this challenge.
Challenge files are located HERE
HINTS
There is a LFI vulnerability on the prices menu.
Inspect the traffic sent to the webserver.
KIRJELDUS
Kahtlustatakse, et vähemalt üks häkker tegutseb riigi sees.
See võimaldab politseil võtta meetmeid.
Kahtlusalune reklaamib oma häkkimisteenuseid veebifoorumites.
Kas tema kodulehelt on võimalik saada lisateavet?
Leidke haavatavus ja lugege lipukest /flag.txt http://localhost:1000
Ülesanne on loodud CTF TECH poolt.
Ülesande jaoks on vajalik Docker.
Ülesande failid asuvad SIIN
VIHJED
Hinnamenüüs on LFI haavatavus.
Kontrollige veebiserverile saadetud liiklust.