# 0723: Video-to-Audio Converter

| Name                                                                   | Authors                                     | Category                      |
| ---------------------------------------------------------------------- | ------------------------------------------- | ----------------------------- |
| [Intigriti July Challenge (2023)](https://challenge-0723.intigriti.io) | [kavigihan](https://twitter.com/_kavigihan) | Command Injection, Blind, RCE |

## Video Walkthrough

[![Blind Command Injection (in a slim docker container) - Solution to July '23 Challenge](https://img.youtube.com/vi/032mvb1038E/0.jpg)](https://www.youtube.com/watch?v=032mvb1038E)

## Challenge Description

> Find the flag (flag.txt) and win Intigriti swag.

## Useful Resources

* [Command Injection](https://portswigger.net/web-security/os-command-injection)
* [Command Injection Payloads](https://github.com/swisskyrepo/PayloadsAllTheThings/blob/master/Command%20Injection/README.md)
* [Reverse Shell with OpenSSL](https://int0x33.medium.com/day-43-reverse-shell-with-openssl-1ee2574aa998)

## Community Writeups

1. [lexsai](https://hackmd.io/@JjOsSMqHROG1hjk1NVjwFg/ByXoAnm52)
2. [dnny](https://hackmd.io/@dnny/rycRxP99n)
3. [eyexion](https://eyexion.fr/posts/intigriti_july_2023)
4. [siss3l](https://gist.github.com/Siss3l/96f34304b925249acde8af4002716038)
5. [goku-kaioken](https://github.com/goku-KaioKen/intigriti/blob/main/challenge-writeups/Challenge-0723.pdf)
6. [m-boll](https://github.com/m-boll/writeups/blob/main/INTIGRITI_0723.md)