CTFtime.org / Trend Micro CTF 2019 - Raimund Genes Cup - Online Qualifier / Exploit 300 (Java jail) / Writeup

Tags: deserialize java xxe

Rating:

tl;dr:
1. Serialize class with the same name, package and serial version id with XXE xml payload to recover the key
2. Craft SPEL payload to load the flag

Full writeup: https://github.com/p4-team/ctf/tree/master/2019-09-07-trendmicro-quals/exploit_300

Original writeup (https://github.com/p4-team/ctf/tree/master/2019-09-07-trendmicro-quals/exploit_300).

Exploit 300 (Java jail)

Comments

Sign in with