Challenge - Don't Bump Your Head(er) - CTFlearn - CTF Practice - CTF Problems

CTFLEARN

Join Now

Don't Bump Your Head(er)

40 points Medium

Try to bypass my security measure on this site! http://165.227.106.113/header.php

Flag

Web · intelagent

16810 solves

Top10

1 alexkato29

2 emperorlepone

3 javier

4 0xibram

5 drmad

6 thanhbok26b

7 ross3102

8 niclev20

9 voidmercy

10 limyunkai19

Rating 4.60

Must solve to rate

Discussion

New
Popular

Leave a Comment (Supports Markdown)

Protect this comment

0xveczif

20 hours ago

Reply Share

can use burpsuite to User-Agent: Sup3rS3cr3tAg3nt Referer: awesomesauce.com to all requests or curl curl --user-agent "Sup3rS3cr3tAg3nt" --referer awesomesauce.com http://165.227.106.113/heade r.php

Leave a Comment (Supports Markdown)

Protect this comment

nullpointer

1 day ago

Reply Share

HINT: Use a proxy like BurpSuite to modify the http header.

Leave a Comment (Supports Markdown)

Protect this comment

her4z

2 weeks ago

Reply Share

so much fun

Leave a Comment (Supports Markdown)

Protect this comment

inexiz

2 months ago

Reply Share

small hint for y'all in the Referer make sure you don't tamper with adding HTTPS or HTTP because it wont work. and about the challenge you can read about using curl or burpsuite or even both like i did. Good luck!

Leave a Comment (Supports Markdown)

Protect this comment

Kelchan23

3 months ago

Reply Share

powershell

Leave a Comment (Supports Markdown)

Protect this comment

cyber_raju

4 months ago

Reply Share

use this command ┌─[✗]─[root@parrot]─[/home/raju] └──╼ #curl "http://165.227.106.113/header.php" --user-agent "Sup3rS3cr3tAg3nt" --referer awesomesauce.com

-1

Leave a Comment (Supports Markdown)

Protect this comment

gvilca29

4 months ago

Reply Share

Protected

Leave a Comment (Supports Markdown)

Protect this comment

sleepsleepsleepsleep

4 months ago

Reply Share

Protected

Leave a Comment (Supports Markdown)

Protect this comment

Kakarot

4 months ago

Reply Share

Protected

Leave a Comment (Supports Markdown)

Protect this comment

LDYBastet

5 months ago

Reply Share

Protected

Leave a Comment (Supports Markdown)

Protect this comment

Bordga

3 years ago

Reply Share

SMALL HINT : NEED TO READ ABOUT HTTP HEADERS , GOOD HUNTING

Leave a Comment (Supports Markdown)

Protect this comment

Bordga

3 years ago

Reply Share

SMALL HINT : NEED TO READ ABOUT HTTP HEADERS , GOOD HUNTING

Leave a Comment (Supports Markdown)

Protect this comment

failure

2 years ago

Reply Share

nice, i solved this by Burp Suite

Leave a Comment (Supports Markdown)

Protect this comment

brootware

3 years ago

Reply Share

Hey folks, curl is pretty useful! You gotta modify the headers https://curl.se/docs/manpage.html#-e

Leave a Comment (Supports Markdown)

Protect this comment

phsycrow

3 years ago

Reply Share

make cURL your girlfriend if possible.

Leave a Comment (Supports Markdown)

Protect this comment

nikosFan

2 years ago

Reply Share

Protected

Leave a Comment (Supports Markdown)

Protect this comment

ert88

2 years ago

Reply Share

good one, used postman

Leave a Comment (Supports Markdown)

Protect this comment

drime

3 years ago

Reply Share

If you are having trouble, make sure to FULLY read this site. https://curl.se/docs/httpscripting.html It tells you everything you need for this challenge!

Leave a Comment (Supports Markdown)

Protect this comment

ritwiksathe

3 years ago

Reply Share

Need to use "Referer" and not "Origin" for your header

Leave a Comment (Supports Markdown)

Protect this comment

W_W_Q_Q

4 years ago

Reply Share

Good for learning about HTTP headers

Leave a Comment (Supports Markdown)

Protect this comment