Lo-Fi
Want to hear some lo-fi beats, to relax or study to? We've got you covered!
For this challenge, we skip the Nmap
scan as the room description directs us to a specific webpage. Our objective is to test for local file inclusion. On the index page, we find links to various genres.

Clicking on a link redirects us via the "page" parameter. Additionally, there is a filter in place that blocks absolute paths.
http://lofi.thm/?page=

We test the "page" parameter for Local File Inclusion (LFI) using FFuF with the LFI-Jhaddix.txt wordlist and successfully identify several valid paths.
ffuf -w /usr/share/wordlists/seclists/Fuzzing/LFI/LFI-Jhaddix.txt -u "http://lofi.thm/?page=FUZZ" -fl 124
We attempt a basic local file inclusion by accessing /etc/passwd
, and it works successfully.
http://lofi.thm/?page=../../../etc/passwd

Next, we attempt to include the /flag.txt
file located in the root directory, and we successfully retrieve it.
http://lofi.thm/?page=../../../flag.txt

Last updated
Was this helpful?