Crazy JSP Web Shell to Exploit Tomcat - Real World CTF 2022
This was a hard web CTF challenge involving a JSP file upload with very restricted character sets. We had to use the Expression Language (EL) to construct useful primitives and upload an ascii-only .jar file.
Alternative writeups:
Fuzzing log4j with Jazzer:
-=[ ❤️ Support ]=-
→ per Video:
→ per Month:
-=[ 🐕 Social ]=-
→ Twitter:
→ Instagram:
→ Blog:
→ Subreddit:
→ Facebook:
9 months ago 00:03:26 1
2 years ago 00:04:41 1
2 years ago 00:48:08 3
2 years ago 00:04:25 1
3 years ago 00:21:49 1
4 years ago 00:04:21 1
8 years ago 00:07:48 1
8 years ago 00:07:41 23
9 years ago 00:03:14 13
9 years ago 00:02:37 1
11 years ago 00:07:05 72
