initial commit

2025-12-04 09:57:17 +01:00
commit 0054cc02b1
4851 changed files with 4416257 additions and 0 deletions
--- a/CTF/Hammer/hist/source-dashboard-php.txt
+++ b/CTF/Hammer/hist/source-dashboard-php.txt
@@ -0,0 +1,91 @@
+
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Dashboard</title>
+    <link href="/hmr_css/bootstrap.min.css" rel="stylesheet">
+    <script src="/hmr_js/jquery-3.6.0.min.js"></script>
+    <style>
+        body {
+            background: url('/hmr_images/hammer.webp') no-repeat center center fixed;
+            background-size: cover;
+        }
+        .container {
+            position: relative;
+            z-index: 10; /* Make sure the content is above the background */
+            background-color: rgba(255, 255, 255, 0.8); /* Slight white background for readability */
+            padding: 20px;
+            border-radius: 10px;
+        }
+    </style>
+	
+	    <script>
+       
+        function getCookie(name) {
+            const value = `; ${document.cookie}`;
+            const parts = value.split(`; ${name}=`);
+            if (parts.length === 2) return parts.pop().split(';').shift();
+        }
+
+      
+        function checkTrailUserCookie() {
+            const trailUser = getCookie('persistentSession');
+            if (!trailUser) {
+          
+                window.location.href = 'logout.php';
+            }
+        }
+
+       
+        setInterval(checkTrailUserCookie, 1000); 
+    </script>
+
+</head>
+<body>
+<div class="container mt-5">
+    <div class="row justify-content-center">
+        <div class="col-md-6">
+            <h3>Welcome, Thor! - Flag: THM{AuthBypass3D}</h3>
+            <p>Your role: user</p>
+            
+            <div>
+                <input type="text" id="command" class="form-control" placeholder="Enter command">
+                <button id="submitCommand" class="btn btn-primary mt-3">Submit</button>
+                <pre id="commandOutput" class="mt-3"></pre>
+            </div>
+            
+            <a href="logout.php" class="btn btn-danger mt-3">Logout</a>
+        </div>
+    </div>
+</div>
+
+<script>
+$(document).ready(function() {
+    $('#submitCommand').click(function() {
+        var command = $('#command').val();
+        var jwtToken = 'eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiIsImtpZCI6Ii92YXIvd3d3L215a2V5LmtleSJ9.eyJpc3MiOiJodHRwOi8vaGFtbWVyLnRobSIsImF1ZCI6Imh0dHA6Ly9oYW1tZXIudGhtIiwiaWF0IjoxNzQ0NDYxMzkwLCJleHAiOjE3NDQ0NjQ5OTAsImRhdGEiOnsidXNlcl9pZCI6MSwiZW1haWwiOiJ0ZXN0ZXJAaGFtbWVyLnRobSIsInJvbGUiOiJ1c2VyIn19.CtEofSfkpfpiUx3jureTlS29FfzVOLLkZVaYrl8oP3M';
+
+        // Make an AJAX call to the server to execute the command
+        $.ajax({
+            url: 'execute_command.php',
+            method: 'POST',
+            data: JSON.stringify({ command: command }),
+            contentType: 'application/json',
+            headers: {
+                'Authorization': 'Bearer ' + jwtToken
+            },
+            success: function(response) {
+                $('#commandOutput').text(response.output || response.error);
+            },
+            error: function() {
+                $('#commandOutput').text('Error executing command.');
+            }
+        });
+    });
+});
+</script>
+</body>
+</html>
+