Repo for my OSS'd TryHackMe rooms
Built for TryHackMe's OWASP10 event, this Vim Vs. Nano themed room highlights how data is serialised and respectively deserialised and how it can be exploited.
- Plaintext and base64 encoded cookie flags
- RCE (with rce.py) via python pickles
- Quiz "bonus flag" made possible by the kind contributors at UrbanInstitute for creating the framework for this quiz.
- Publish DockerHub Image
- Deployable with flask server, Dockerfile or behind wsgi & reverse proxy i.e. Nginx
- Support not provided