amon (j. heng)

amon (j. heng)

The Potatosploiter. Pirate of the Seven Proxseas.

Standard SQL injection challenge in which dumping out the data in the database reveals the flag.

Challenge Description

Points

200

Solution

Unfortunately, I do not have access to the original scoreboard or the web server so some of the details of the solution are reconstructed from memory.

The following URL was vulnerable to SQL injection on the id parameter:

http://13.228.110.190/show.php?id=1

Using sqlmap to dump the entire database gives us the flag:

Database: sgctf
Table: fl4g
[1 entry]
+------------------------------+
| you_cant_see_me              |
+------------------------------+
| FLAG{J0hn C3n4!!!!!!!!!!!!!} |
+------------------------------+

Flag: FLAG{J0hn C3n4!!!!!!!!!!!!!}

Leave a Comment

You May Also Enjoy

Cyberpeace 2022 - Crysys (Pwn)

5 minute read

Summary: A minimal binary with only the read libc function and containing a standard stack overflow can be exploited by leveraging a common add-what-where ga...

TetCTF 2022 - Newbie (Pwn)

6 minute read

Summary: An ELF binary contains functionality to generate a ‘hashed’ identifier from two bytes of memory at an offset specified by the user. This ‘hashed’ id...

TetCTF 2022 - EzFlag (Web/Pwn)

14 minute read

Summary: In this two part challenge, flawed filename logic allows an attacker to write arbitrary Python files that are executed as a CGI script. Once the att...