π (incomplete) Argument Injection
Overview
Contents of this topic will revolve around vulnerabilities that allow malicious or dangerous arguments to be passed to a remote command. (Often ones that allow authentications bypass, etc.)
π§ Techniques
TABLE creation_date AS "Created"
FROM "05 - Content"
WHERE contains(up, this.file.link) AND contains(tags, "π§ ")
SORT file.name ASCπ οΈ Tools
TABLE creation_date AS "Created"
FROM "05 - Content"
WHERE contains(up, this.file.link) AND contains(tags, "π οΈ")
SORT file.name ASCπ© Related CTF Operations
TABLE status, difficulty
FROM "10_Operations"
WHERE contains(up, this.file.link) OR contains(tags, "π©")
SORT creation_date DESC