Secret header: Difference between revisions
From Pessin randon wiki
No edit summary |
|||
| Line 10: | Line 10: | ||
===Solution=== | ===Solution=== | ||
When you go and browse the URL with curl you will notice that it redirects to page.php. If you curl that address you will get notified that you have to use firefox browser in linux and you can not use | |||
===Tools=== | ===Tools=== | ||
Revision as of 13:18, 9 September 2022
Description
100pts
Based on the information from national Cyber Security Incident Response Team, one sevice is infected with malware and communicating with malicious C&C server.
Connecting to C&C server from other systems is impossible, since secret http header value is unknown.
Question
Access the compromised server URL and find out secret HTTP header message.
Solution
When you go and browse the URL with curl you will notice that it redirects to page.php. If you curl that address you will get notified that you have to use firefox browser in linux and you can not use
Tools
Flag
943c46ee-3336-48af-bb74-459b0f303907
