notes (597B)
1Literally RCE as a service with training wheels. 2 3Get to dynamically dispatch a C# function from JSON descripiton. 4 5Even the type string is returned to you in the service exception output. 6 7Once you have code execution its a matter of making the flag accessible 8through another endpoint, since the program expects an Image return type, 9but GetUser returns a String, so an exception is thrown, preventing 10you from getting the output directly in the HTTP response. 11 12We move the flag to wwwroot/js/flag.js. Need the extension, since 13otherwise the strict web router will not allow us to download it. 14