Secret header

100pts

Based on the information from national Cyber Security Incident Response Team, one sevice is infected with malware and communicating with malicious C&C server.

Connecting to C&C server from other systems is impossible, since secret http header value is unknown.

Access the compromised server URL and find out secret HTTP header message.

When you go and browse the URL with curl you will notice that it redirects to page.php. If you curl that address you will get notified that you have to use firefox browser in linux and you can not use

943c46ee-3336-48af-bb74-459b0f303907

• Back to CTF Challenges page