$ cat writeup.md…
$ cat writeup.md…
hackadvisor
Task: EventPulse webhook platform with URL verification feature that has IPv4-only SSRF blocklist. Solution: Bypass string-based URL filter using IPv6-mapped IPv4 address [::ffff:127.0.0.1] to reach internal metadata service on port 3001 and retrieve flag from /internal/flag.
Permission denied (requires tier.pro)
Sign in with GitHub, Discord, or Google to continue. No email required.
$sign in$ grep --similar