webeasy

RCE IFS

spbctf

Task: Web form with SHA-384 hashing via shell command, spaces filtered from input. Solution: Command injection using ${IFS} to bypass space filter and # to neutralize the pipe to sha384sum.

$ ls tags/ techniques/

command_injection rce php shell_injection ifs_bypass space_filter_bypass sha384sum system_exec

ifs_space_bypassshell_comment_neutralizationcommand_chaining_semicolon

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

🔒

Permission denied (requires tier.pro)

Sign in to access full writeups

Create a free account with GitHub, then upgrade to Pro.

$ssh [email protected]