寧波市第三屆網路安全大賽-WriteUp(Misc)
阿新 • • 發佈:2020-07-07
友情連結
Web師傅:skyxmao師傅
內心OS
第一次參加這種大型比賽,實力較菜,請師傅們多多指點
Misc | 完成 | 第一
下載檔案,看一下doc沒有任何問題,
沒有發現任何隱寫,然後修改檔案字尾名docx為zip,解壓
將所有解壓後的檔案開啟,用notepad++ 在此全部檔案中搜索flag欄位,即可找到flag
Misc | 完成 | BBQ
龐大的base64,使用Notepad++
相信大家一眼就能看到是base64檔案隱寫流(可能不準確)
這裡推薦一手指令碼
def get_base64_diff_value(s1, s2):base64chars = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/'
res = 0
for i in xrange(len(s2)):
if s1[i] != s2[i]:
return abs(base64chars.index(s1[i]) - base64chars.index(s2[i]))
return res def solve_stego():
with open('BBQ.txt', 'rb') as f:
file_lines = f.readlines()bin_str = ''
for line in file_lines:
steg_line = line.replace('\n', '')
norm_line = line.replace('\n', '').decode('base64').encode('base64').replace('\n', '')
diff = get_base64_diff_value(steg_line, norm_line)
print diff
pads_num = steg_line.count('=')if diff:
bin_str += bin(diff)[2:].zfill(pads_num * 2)
else:
bin_str += '0' * pads_num * 2
print goflag(bin_str) def goflag(bin_str):
res_str = ''
for i in xrange(0, len(bin_str), 8):
res_str += chr(int(bin_str[i:i + 8], 2))
return res_str if __name__ == '__main__':
solve_stego()
Misc | 完成 | 看圖說話
使用了N多JPG隱寫,最後使用到了這個軟體SilentEye
由於是弱密碼,一跑就出來了
以下都是弱口令
"", "", "", "", "", "", "password", "", "", "", "", "", "", "", "woaini", "", "", "", "hotmail.com", "", "", "", "", "a123456", "", "163.com", "", "yahoo.com.cn", "sohu.com", "yahoo.cn", "111222tianya", "163.COM", "tom.com", "139.com", "wangyut2", "pp.com", "yahoo.com", "", "", "", "", "", "zxcvbnm", "123456a", "", "", "", "", "", "", "", "a321654", "", "", "", "", "q123456", "", "aaaaaa", "a123456789", "qq123456", "", "woaini1314", "a123123", "a111111", "", "a5201314", "z123456", "liuchang", "a000000", "", "asd123", "", "", "", "", "woaini520", "", "123456789a", "woaini123", "q1q1q1q1", "a12345678", "qwe123", "123456q", "", "asdasd", "", "", "", "", "", "iloveyou", "", "", "", "", "", "", "", "woaini521", "", "18n28n24a5", "abc123", "password", "123qwe", "", "", "", "dearbook", "", "", "", "", "", "", "", "aaaaaaaa", "", "", "a123456789", "", "1qaz2wsx", "xiazhili", "", "password", "", "qqqqqqqq", "", "qwertyuiop", "qq123456", "iloveyou", "", "", "", "asdfghjkl", "1q2w3e4r", "123456abc", "", "", "", "qazwsxedc", "abcd1234", "", "", "asdasdasd", "", "", "", "abc123456", "a12345678", "", "a1234567", "1234qwer", "qwertyui", "123456789a", "qq.com", "", "163.com", "ohwe1zvq", "xiekai1121", "", "", "", "", "", "", "", "", "as1230", "zz123456", "", "", "", "", "", "", "", "", "", "", "", "", "caonima99", "", "", "qq776491", "hahabaobao", "", "", "leqing123", "", "", "", "", "", "", "", "", "", "", "", "", "", "woaini", "", "", "RAND#a#8", "hotmail.com", "", "", "", "", "", "a123456"
Misc | 未完成 | 等等我
由於比賽結束,看不了題目。題目就發不了了。
不過我經過指令碼跑出了這些不知道有沒有用
12,235,05,0125,01234,035,0145,01234,3,25,05,4,023,25,25,015,013,05,4,015,23,05,023,0123,023,4,015,15,012,0123,125,123,025,023,4,0123,125,125,125,13
不好意思了,這裡我也卡住了
Misc | 未完成 | 抓我把
下載資料流,在資料流,在4 和 5 中看到了一堆的數字,一看就知道504B 是zip,把他複製出來放入txt中
同樣使用外掛
獲得zip,開啟下載是一個加密的word,然後使用軟體跑一下得到密碼
123321(又是一個弱密碼)
然後我就呆住,請各位大師師傅賜教,我真不會惹。(PS:師傅們吃草莓嘛?)