$ cat writeup.md…
$ cat writeup.md…
hackadvisor
Task: nginx reverse proxy with case-sensitive location ACL blocking /admin/ endpoints in front of Express.js backend with case-insensitive routing. Solution: Path case normalization bypass — capitalize /Admin/flag to evade nginx ACL while Express still routes it to the admin handler.
Permission denied (requires tier.pro)
Sign in with GitHub, Discord, or Google to continue. No email required.
$sign in$ grep --similar