Project Sekai - ✅-web-safe

safe_proxy - 1000 points

Category: Web Description: Deno sandbox prevents SSRF, right? Author : Satoooon http://safe-proxy-web.chal.crewc.tf:8083/ Files:

https://crewc.tf/files/20f82440902ad65db66ff982bfe3d94e/safe_proxy.zip?token=eyJ1c2VyX2lkIjoyMSwidGVhbV9pZCI6MTYsImZpbGVfaWQiOjMzfQ.ZKjt8A.ikU0WGDyMFujdkJrVl_-bLQ4yrQ

Tags: No tags.

Sutx pinned a message to this channel. 07/07/2023 10:02 PM

@rubiya wants to collaborate

@Violin wants to collaborate

why /proxy doesn't work?

@irogir wants to collaborate

too lazy to provide a working compose (edited)

rubiya

why /proxy doesn't work?

what urls did you specify?

03:38

we are restricted to --allow-net="0.0.0.0:8080,$PROVIDER_HOST"

fetch supports more protocols

04:12

code is in ext/fetch/lib.rs:253

04:13

we could use file prot to read from cwd (it is allowed by the rules)

04:14

and maybe the contents of requests are cached, so we could recover the flag from .cache

@jayden wants to collaborate

@jayden can you build the web docker?

yeah seems like just finding out how this hash is built, have local solve

irogir

yeah seems like just finding out how this hash is built, have local solve

https://discord.com/channels/959047109015904306/959060331496345601/1127206031529869374

04:54

is this the issue?

sahuang

https://discord.com/channels/959047109015904306/959060331496345601/1127206031529869374

dont have access to this link, mind sharing ss

someone ask it's the docker working properly? i get the following error ERROR: failed to solve: error getting credentials - err: exit status 1, out: ``

nah, i just have skill issues reading rust code

o ok

the token from the dumped sqlite btw http://safe-proxy-flag-provider:8082/?token=5a35327045b0ec9159cc188f643e347f

@Legoclones wants to collaborate

05:31

✅ Challenge solved.

gg web maxxed lol

crew{file://_SSRF_in_modern_6f4544ec261423ce}

ig i could have just adjusted the token in the image instead of trying to get that cs gen working

Legoclones

gg web maxxed lol