Crazy JSP Web Shell to Exploit Tomcat - Real World CTF 2022
Added 2022-02-24 16:47:23 +0000 UTC
This was a hard web CTF challenge involving a JSP file upload with very restricted character sets. We had to use the Expression Language (EL) to construct useful primitives and upload an ascii-only .jar file.