CTFs
Upcoming
Archive
Past events
Tasks
Writeups
Calendar
Teams
Rating
Compare
Create new team
Get team members
FAQ
Contact us
For organizers
Feedback
About
Sign in
Home
/
CTF events
/
CSAW CTF Qualification Round 2021
/
Tasks
/
Gatekeeping
/
Writeup
Gatekeeping
by
sayoojbkumar
/
bi0s
Tags:
nginx
wsgi
Rating:
5.0
tl;dr
Bypass nginx's DENY ALL using
SCRIPT_NAME
Calculate key_id uploading
flag.txt.enc
Leak the key and decrypt
flag.txt.enc
Original writeup
(https://blog.bi0s.in/2021/09/14/Web/CSAW'21-Gatekeeping/).
Comments
x
Sign in with
I don't remember