CodeCup Challenge LFI

A simple Node server vulnerable to LFI

This is a CTF challenge that requires the user to exploit LFI to find the flag. Note that this particular app is Linux specific, and the flag must be specified through an environment variable.

Build Docker Container

docker build -t codecup-codeday/chal-lfi:latest .

Environment Variables

FLAG - Required, the flag the user will find. PORT - Not Required, the port the app runs on - defaults to 8080. SEED - Not Required, the seed the website will be generated on - defaults to the FLAG env.

Example

# Set Environment Variable(s)
export PORT=8080
export SEED=test
export FLAG=test
# Bare Metal
pnpm install --prod
node src/server.js
# Docker Container
docker run -e PORT -e SEED -e FLAG -p $PORT:$PORT codecup-codeday/chal-lfi:latest
# Docker Container w/ Init
docker run -it --init -e PORT -e SEED -e FLAG -p $PORT:$PORT codecup-codeday/chal-lfi:latest

Name		Name	Last commit message	Last commit date
Latest commit History 15 Commits
.github/workflows		.github/workflows
public		public
src		src
.dockerignore		.dockerignore
.gitignore		.gitignore
Dockerfile		Dockerfile
LICENSE		LICENSE
README.md		README.md
package.json		package.json
pnpm-lock.yaml		pnpm-lock.yaml

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

CodeCup Challenge LFI

A simple Node server vulnerable to LFI

Build Docker Container

Environment Variables

Example

About

Releases

Packages

Contributors 3

Languages

License

codecup-codeday/chal-lfi

Folders and files

Latest commit

History

Repository files navigation

CodeCup Challenge LFI

A simple Node server vulnerable to LFI

Build Docker Container

Environment Variables

Example

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Contributors 3

Languages

Packages