Simple CTF is a boot2root that focuses on the basics of web based hacking. /root/flag.txt is your ultimate goal.
- Get a user shell by uploading a reverse shell and executing it.
- A proxy may help you to upload the file you want, rather than the file that the server expects.
- There are 3 known privesc exploits that work. Some people have had trouble executing one of them unless it was over a reverse shell using a netcat listener.