Thursday, October 12, 2017

WRITE-UP CHALLENGE 2 WEBHACKING

Đề bài:



Sau khi mình kiểm tra page source, mình nhận thấy có 1 trang admin bị ẩn giấu, cùng với một dòng chú thích rất khả nghi, đó là: 
<!--2017-10-12 09:38:52-->



Monday, September 11, 2017

Web02-WhiteHat Challenge 04 (2017) Write-up

I. Threads:
     Try to login. After successfully logging in, pls check all information carefully to get flag.
                                      http://chall04-web02.wargame.whitehat.vn/


Sunday, September 10, 2017

Write-up CTF Web200pt China_UA Hero Academy PwC Hackaday

*Đề bài:
http://188.166.186.239/


*Giải quyết:
     - Sau khi kiểm tra 1 lượt, mình thấy http://188.166.186.239/student.php?id=1. Và mình thử check sqli xem sao và thấy:


Monday, August 28, 2017

Web01-WhiteHat Challenge 04 (2017) Write-up

Threads: Search vulnerabilities on the website. Then get credentials to open new vulnerable functions and exploit to get flag.
Link: Challenge Web01-WhiteHat Chellenge 04 (2017)

Solve:
-First: I've found links: http://chall04-web01.wargame.whitehat.vn/?p=dogs and http://chall04-web01.wargame.whitehat.vn/?p=cats.
 I think the vulnerability website is LFI.



-I see ?p=dogs and ?p=cats so I think code-behind will look like:
     error_reporting(0); // hidden PHP's error.
     if(isset($_GET['p'])) {
   $file=$_GET['p'].'.php';
   if(!file_exists($file)){
   if (!strpos($file,"filter")) {
   $file='index.php';
   }
   }