CTFtime.org

aLive

by snip3rgg / nCreeps

Rating:

## DESCRIPTION
In my college level project I created this website that tells us if any domain/ip is active or not. But there is a catch.

## soln
Fumbling upon this challenge I tried whole lot of things like XSS, XSS to RCE and what not :/

And finally a simple dirsearch gave a txt file flag.txt

![image](https://user-images.githubusercontent.com/76834257/229353241-ef98d9aa-7169-48d8-a5bd-709699aecf5a.png)

thats it. but lmao to be honest after the ctf i came to know that it was a whole chall for command injection.

```Flag - VishwaCTF{b1inD_cmd-i}```

Original writeup (https://github.com/CBC-MIT/CTF-Writeups/tree/main/VishwaCTF2k23/aLive).

Comments