CTF Challenge - CTF Challenge #3

We hosted a CTF challenge on 2021-01-22T12:00:00Z2021-01-22T18:30:00Z

CTF Server URL: http://54.212.122.94:8080/ - Closed:lock:
Difficulty: Medium
Results: CTF Challenge - CTF Challenge #3 - Results
CTF Walkthrough: CloudSEK CTF Challenge #3 WriteUp | by Yash Swarup | Jan, 2021 | Medium

Hints:

Quick notes

  1. The link for the challenge is posted above.
  2. Since this challenge is not for any hiring purpose, you are not required to submit the Walkthrough of the CTF.
  3. Whoever completes the challenge and submits the Flag, the top 10 winners will be selected (purely based on the time of submission) and a badge will be given to them which will be an added advantage for the upcoming challenges in the coming months.

Definitely, you are gonna learn something new from it and have fun while solving it.

For more updates, stick around the community!

Meanwhile, you can invite your friends to the forum by sharing the below invite link if you think that they can be benefitted from the community.

https://community.xvigil.com/invites/74ad64eb3e050ce828175fe0b0a2d06e

You can drop your questions/comments below if any :slight_smile:

12 Likes

Hello everyone! This CTF is a web challenge, you don’t need to play with any other ports other than the port provided. No need to do port scans. And also directory brute-forcing is not required to solve the challenge.

4 Likes

How to register for this CTF ?

2 Likes

Hi @Kapilsundar, the link to the CTF will be posted at 5:30 PM sharply on the same thread. There is no separate registration.

4 Likes

What is the flag format ?

2 Likes

The flag format is CloudsekCTF{}

3 Likes

where to submit the flag ya ? in here ?

2 Likes

To submit the flag, you will get a form there. Even that is part of the challenge :nerd_face:

1 Like

todays challenge was good learnt something new.
Also i didn’t get the badge for the previous months challenge can you please look into that.

4 Likes

Happy that you were able to solve the challenge and had some learning along with fun. Sure, you will be updated regarding the badge very soon.

2 Likes

Got to learn something today too…

3 Likes

i want to know the writeup after this. will it be posted ?

3 Likes

Yes Sure
We will share the writeup @tr0j4nx00

4 Likes

Will this still be online for those who want to keep trying to catch the flag after the allocated time?

3 Likes

No, We will close the challenge at 12:00 AM

2 Likes

We will be posting some hints for your help.

3 Likes

yes please. really in need of it

2 Likes

hint:
Use burpsuite and see what requests are being sent by the web application to the server.

3 Likes

Nice challenge learned something new vuln and thanks for the challenge :slight_smile:

3 Likes

Hint 2:
Check what are the vulnerabilities in xml.

2 Likes