Eric Rafaloff

My personal blog on software development and security

Home » Category: Capture the Flags

BSides Pre-Con Capture the Flag

This challenge involved a web application that featured a PHP variable inspector. The instructions read: NETTITUDE.COM CTF Enter some serialised PHP in our form below and we’ll output it on the page. We have some built in classes too. Objective: Simply run the “getFlag()” method.