csaw21

Writeups for CSAW 2021 CTF

View on GitHub

securinotes

Writeup by: USERNAME

Team: OnlyFeet

Writeup URL: GitHub

You have access to the SecuriNotes application. You overheard your coworker Terry talking about how he uses it as a password manager. What could possibly go wrong...

Author: h34d4ch3, RangeForce

http://web.chal.csaw.io:5002

Initial Research

Word.

$ echo 'thingz'
thingz

Version Mismatches

Wordsz.

some output

Ancient History or Stegosarus Time

Moar Words

$ cat commands.txt
commands1
$ nmap 1.2.3.4
...

Victory

Submit the flag and claim the points:

flag{flag-goes-here}