- clone the repo to your local machine
- build and run the this small app in a docker container
[5pt] - bruteforce the login to get into the app
[5pt] - exploit the app through SQL injection to extract the flag
[10pt] - enumerate the app to find the bonus flag
[5pt]
have fun! :)