Pickle exploit using eval instead of os.system. Required a little bit of understanding, not too much.

Original writeup (https://neg9.org/writeups/tamuctf-2021-tictactoe-solution/).