Muuu Nya's Blog


HITCON CTF 2018 - Why so Serials? Writeup

HITCON CTF 2018 - Why so Serials? Writeup Description Why so Serials? Shell plz! Author: orange 1 Team solved. 解题思路 绕过后缀名, 读取web.config(SSI) 题目给出了源代码 <%@ Page Language="C#" %> <script runat="server"> protected void Button1_Click(object sender, EventArgs e) { if (FileUpload1.HasFile)

2018 CTF Web Write-up

这比赛就两个web, 真的是太不友好了, 对于一只菜鸡web狗, 两个题目的难度也是一个天上一个地下. WEB Baby PHP (Category: Web) Difficulty: baby PHP is a popular general-purpose scripting language that is especially suited to web development. Fast,

CASW CTF 2018 Web500 Write-up

Description C S A W C T F It is a period of civil war. Rebel hackers, striking from a hidden base, have won their first victory against the evil DBA. During the battle, Rebel spies managed to steal secret plans to the DBA's ultimate weapon, WTF.SQL, an integrated framework with enough buzzwords to host an entire website. Pursued by the DBA's sinister agents, You, the Player, race home aboard your VT100, custodian of the stolen schema that can save the animals and restore freedom to the internet.