Details

Created 1 month ago by hxd

Updated 1 month ago by HexaHack

Book Permissions Active

Actions

Shelves

Hacking

Recent Activity

HexaHack created page IRB
2 weeks ago

HexaHack updated page XML injection
2 weeks ago

HexaHack updated page SSTI - Server Side Template Injections
2 weeks ago

HexaHack created page SSTI - Server Side Template Injections
2 weeks ago

HexaHack updated page ZIP cracking
2 weeks ago

HexaHack created page ZIP cracking
3 weeks ago

HexaHack created page CMD injection
1 month ago

HexaHack updated page XML injection
1 month ago

HexaHack updated book CTF
1 month ago

HexaHack created page XML injection
1 month ago

hxd updated permissions CTF
1 month ago

hxd created book CTF
1 month ago

CTF

XML injection

XXE XML External Entity <?xml version="1.0"?> <!DOCTYPE root [<!ENTITY test SYSTEM 'file:///etc...

CMD injection

Shell single quote For date '$FORMAT' FORMAT '; cat /flag' Gives date ''; cat /flag''

ZIP cracking

Known plaintext (file) https://github.com/keyunluo/pkcrack Need one exact file in plaintext fro...

SSTI - Server Side Template Injections

Server Side Template Injections Template injections examples Java - Velocity Runs command Gets...

IRB

Chunk s.scan(/......./) Binary to integer s.to_i(2) Integer to ASCII character 123.chr Hex to ...

Back to top