Crazy JSP Web Shell to Exploit Tomcat - Real World CTF 2022

Uploaded By: Myvideo

Published on

24 Feb 2022

1 view

0

0 votes

0

About Share Download Add to

This was a hard web CTF challenge involving a JSP file upload with very restricted character sets. We had to use the Expression Language (EL) to construct useful primitives and upload an ascii-only .jar file. Alternative writeups: Fuzzing log4j with Jazzer: -=[ ❤️ Support ]=- → per Video: → per Month: -=[ 🐕 Social ]=- → Twitter: → Instagram: → Blog: → Subreddit: → Facebook:

Share with your friends

Link:

Embed:

<iframe width="640" height="360" src="//myvideo.cc/embed/cDZxNk1aSVE5ZzJUdmVHWkdhN1RDUzZQMHk0WS9CU2RHb1RnZUwzU09uQT0" frameborder="0" webkitallowfullscreen mozallowfullscreen allowfullscreen></iframe>

Video Size:

Custom size:

x

Autoplay video

Hide player controls

Hide resume playing

Add to Playlist:

Favorites

My Playlist

Watch Later

AIR JORDAN 1 LOW SHATTERED BACKBOARD REVIEW + ON FEET

7 months ago

00:10:07

AIR JORDAN 1 LOW SHATTERED BACKBOARD REVIEW + ON FEET

1 32%

Meghan Trainor - Better When I'm Dancin' | One Voice Children's Choir | Kids Cover

12 months ago

00:03:26

Meghan Trainor - Better When I'm Dancin' | One Voice Children's Choir | Kids Cover

1 87%

A Million Dreams (The Greatest Showman OST) | United Way feat. One Voice Children's Choir

2 years ago

00:04:41

A Million Dreams (The Greatest Showman OST) | United Way feat. One Voice Children's Choir

1 14%

Johnnie Marshall - Live For Today

2 years ago

00:48:08

Johnnie Marshall - Live For Today

3 39%

Classic Queen (TTBB Choir) - Arranged by Philip Lawson

2 years ago

00:04:25

Classic Queen (TTBB Choir) - Arranged by Philip Lawson

1 94%

Crazy JSP Web Shell to Exploit Tomcat - Real World CTF 2022

3 years ago

00:21:49

Crazy JSP Web Shell to Exploit Tomcat - Real World CTF 2022

1 49%

OZZY OSBOURNE - Crazy Babies (Official Video)

4 years ago

00:04:21

OZZY OSBOURNE - Crazy Babies (Official Video)

1 11%

I Drove a Crazy Rare Imported TVR Tuscan, And It's Insane

8 years ago

00:07:48

I Drove a Crazy Rare Imported TVR Tuscan, And It's Insane

1 40%

ClickPLAY Quickfire

8 years ago

00:07:41

ClickPLAY Quickfire

23 12%

live JSP

9 years ago

00:03:14

live JSP

13 61%

WORST STROLLER EVER! -- LT #12

9 years ago

00:02:37

WORST STROLLER EVER! -- LT #12

1 86%

by Emilie Autumn - Official Video

11 years ago

00:07:05

by Emilie Autumn - Official Video

72 10%

0 Comments

Guest