Challenge - Don't Bump Your Head(er) - CTFlearn - CTF Practice - CTF Problems

CTFLEARN

Join Now

Don't Bump Your Head(er)

40 points Medium

Try to bypass my security measure on this site! http://165.227.106.113/header.php

Flag

Web · intelagent

17051 solves

Top10

1 alexkato29

2 emperorlepone

3 javier

4 0xibram

5 drmad

6 thanhbok26b

7 ross3102

8 niclev20

9 voidmercy

10 limyunkai19

Rating 4.60

Must solve to rate

Discussion

New
Popular

Leave a Comment (Supports Markdown)

Protect this comment

0x324

6 days ago

Reply Share

Super easy ctf

Leave a Comment (Supports Markdown)

Protect this comment

izanagi13

1 week ago

Reply Share

Leave a Comment (Supports Markdown)

Protect this comment

izanagi13

1 week ago

Reply Share

solved this with caido

Leave a Comment (Supports Markdown)

Protect this comment

rambobabu

2 weeks ago

Reply Share

Tried this and did it thanks for the help in comments learnt lot about the curl and headers.

Leave a Comment (Supports Markdown)

Protect this comment

rambobabu

2 weeks ago

Reply Share

Tried this and did it thanks for the help in comments learnt lot about the curl and headers.

Leave a Comment (Supports Markdown)

Protect this comment

0xveczif

1 month ago

Reply Share

can use burpsuite to User-Agent: Sup3rS3cr3tAg3nt Referer: awesomesauce.com to all requests or curl curl --user-agent "Sup3rS3cr3tAg3nt" --referer awesomesauce.com http://165.227.106.113/heade r.php

Leave a Comment (Supports Markdown)

Protect this comment

nullpointer

1 month ago

Reply Share

HINT: Use a proxy like BurpSuite to modify the http header.

Leave a Comment (Supports Markdown)

Protect this comment

0x324

6 days ago

Reply Share

nu just use curl ;d

Leave a Comment (Supports Markdown)

Protect this comment

her4z

1 month ago

Reply Share

so much fun

Leave a Comment (Supports Markdown)

Protect this comment

inexiz

3 months ago

Reply Share

small hint for y'all in the Referer make sure you don't tamper with adding HTTPS or HTTP because it wont work. and about the challenge you can read about using curl or burpsuite or even both like i did. Good luck!

Leave a Comment (Supports Markdown)

Protect this comment

Bordga

4 years ago

Reply Share

SMALL HINT : NEED TO READ ABOUT HTTP HEADERS , GOOD HUNTING

Leave a Comment (Supports Markdown)

Protect this comment

failure

2 years ago

Reply Share

nice, i solved this by Burp Suite

Leave a Comment (Supports Markdown)

Protect this comment

brootware

3 years ago

Reply Share

Hey folks, curl is pretty useful! You gotta modify the headers https://curl.se/docs/manpage.html#-e

Leave a Comment (Supports Markdown)

Protect this comment

phsycrow

4 years ago

Reply Share

make cURL your girlfriend if possible.

Leave a Comment (Supports Markdown)

Protect this comment

nikosFan

2 years ago

Reply Share

Protected

Leave a Comment (Supports Markdown)

Protect this comment

ert88

3 years ago

Reply Share

good one, used postman

Leave a Comment (Supports Markdown)

Protect this comment

drime

3 years ago

Reply Share

If you are having trouble, make sure to FULLY read this site. https://curl.se/docs/httpscripting.html It tells you everything you need for this challenge!

Leave a Comment (Supports Markdown)

Protect this comment

ritwiksathe

3 years ago

Reply Share

Need to use "Referer" and not "Origin" for your header

Leave a Comment (Supports Markdown)

Protect this comment

W_W_Q_Q

4 years ago

Reply Share

Good for learning about HTTP headers

Leave a Comment (Supports Markdown)

Protect this comment