misceasy

Isolated

hackerlab

Task: TCP service presents a restricted bash shell — commands prefixed with /cmd, 20-char limit, cat/head/tail removed, output containing 'error' blocked. Solution: use rev command to read files (bypasses both length and output filter), enumerate filesystem, find /fl4g.txt, reverse the reversed output to get the flag.

$ ls tags/ techniques/

restricted_shell bash output_filter linux_tricks command_length_limit rev file_read_bypass

output_filter_bypassrestricted_shell_escapealternative_file_readingshort_command_crafting

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

🔒

Permission denied (requires tier.pro)

Sign in to access full writeups

Create a free account with GitHub to get started.

$ssh [email protected]