Link : http://theyear2000.ctf.bsidessf.net/
As he says in this web: made with apache,git,notepad++,html
After one hour searching i find out git vulnerability
I use gitdumper and extractor to solve this challenge:
first:
gitdumper.sh http://theyear2000.ctf.bsidessf.net/.git/ repo
secondly:
extractor.sh repo/ doom/
Open doom directory, we can see 3 folders:
Let cat one by one
cat doom/0-9e9ce4da43d0d2dc10ece64f75ec9cab1f4e5de0/index.html
I got lucky, the flag is in there:
FLAG:what_is_HEAD_may_never_die
Home 