Challenge - Don't Bump Your Head(er) - CTFlearn - CTF Practice - CTF Problems

Don't Bump Your Head(er)

40 points Medium

Try to bypass my security measure on this site! http://165.227.106.113/header.php

Flag

Web · intelagent

17867 solves

Top10

1 alexkato29

2 emperorlepone

3 javier

4 0xibram

5 drmad

6 thanhbok26b

7 ross3102

8 niclev20

9 voidmercy

10 limyunkai19

Rating 4.60

Must solve to rate

Discussion

New
Popular

Leave a Comment (Supports Markdown)

Protect this comment

gdragon

2 weeks ago

Reply Share

Protected

Leave a Comment (Supports Markdown)

Protect this comment

deviprasadlutta

3 weeks ago

Reply Share

Finally I solved this

Leave a Comment (Supports Markdown)

Protect this comment

SilverOwl

3 weeks ago

Reply Share

Burpsuite is the best!

Leave a Comment (Supports Markdown)

Protect this comment

Knyazik01

1 month ago

Reply Share

I used cURL Try to get this page and check HTML comments:

Sorry, it seems as if your user agent is not correct, in order to access this website...

So, change User-Agent header in request

You'll get: Sorry, it seems as if you did not just come from the site...

Change "referer" to the needed value Result: curl http://165.227.106.113/header.php -H "User-Agent: <agent from comments>" --referer <host from response>

Leave a Comment (Supports Markdown)

Protect this comment

Knyazik01

1 month ago

Reply Share

Protected

Leave a Comment (Supports Markdown)

Protect this comment

admiral_neighbor

1 month ago

Reply Share

dobre

Leave a Comment (Supports Markdown)

Protect this comment

admiral_neighbor

1 month ago

Reply Share

dobre

Leave a Comment (Supports Markdown)

Protect this comment

cheaterdxd

2 months ago

Reply Share

challege let me define the small different between 2 likely header. Very usefull !!

Leave a Comment (Supports Markdown)

Protect this comment

pA4_r0t

3 months ago

Reply Share

Nice

-1

Leave a Comment (Supports Markdown)

Protect this comment

mikeAl

3 months ago

Reply Share

I will marry curl , I love her so much :)

-1

Leave a Comment (Supports Markdown)

Protect this comment

sad_dog

2 years ago

Reply Share

IZI :-) as sauce ;-)

Leave a Comment (Supports Markdown)

Protect this comment

Bordga

4 years ago

Reply Share

SMALL HINT : NEED TO READ ABOUT HTTP HEADERS , GOOD HUNTING

Leave a Comment (Supports Markdown)

Protect this comment

phsycrow

4 years ago

Reply Share

make cURL your girlfriend if possible.

Leave a Comment (Supports Markdown)

Protect this comment

mikeAl

3 months ago

Reply Share

I will marry her someday :)

Leave a Comment (Supports Markdown)

Protect this comment

brootware

3 years ago

Reply Share

Hey folks, curl is pretty useful! You gotta modify the headers https://curl.se/docs/manpage.html#-e

Leave a Comment (Supports Markdown)

Protect this comment

failure

3 years ago

Reply Share

nice, i solved this by Burp Suite

Leave a Comment (Supports Markdown)

Protect this comment

nikosFan

3 years ago

Reply Share

Protected

Leave a Comment (Supports Markdown)

Protect this comment

ritwiksathe

4 years ago

Reply Share

Need to use "Referer" and not "Origin" for your header

Leave a Comment (Supports Markdown)

Protect this comment

deepmindx

4 years ago

Reply Share

This wasn't easy at all ... 0_o"

Leave a Comment (Supports Markdown)

Protect this comment

W_W_Q_Q

4 years ago

Reply Share

Good for learning about HTTP headers

Leave a Comment (Supports Markdown)

Protect this comment