webProeasy

Ping me

spbctf

Task: Ping service with user input passed to shell command. Solution: Command injection via semicolon chaining (;) to bypass WAF and read /flag.

$ ls tags/ techniques/
command_injectionshellwaf_bypassping
waf_bypasssemicolon_command_chaining
🔒

Permission denied (requires tier.pro)

Sign in to access full writeups

Sign in with GitHub to continue. No email required.

$sign in

$ grep --similar

Similar writeups