Compare commits
2 Commits
91e2a05d92
...
68be7b01d8
| Author | SHA1 | Date | |
|---|---|---|---|
| 68be7b01d8 | |||
| 7bc602a241 |
BIN
mdimg/1.png
Normal file
BIN
mdimg/1.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 81 KiB |
BIN
mdimg/2.png
Normal file
BIN
mdimg/2.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 173 KiB |
BIN
mdimg/3.png
Normal file
BIN
mdimg/3.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 204 KiB |
BIN
mdimg/4.png
Normal file
BIN
mdimg/4.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 54 KiB |
BIN
mdimg/5.png
Normal file
BIN
mdimg/5.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 76 KiB |
BIN
mdimg/6.png
Normal file
BIN
mdimg/6.png
Normal file
Binary file not shown.
|
After Width: | Height: | Size: 35 KiB |
35
solution.md
35
solution.md
@ -8,31 +8,38 @@
|
||||
|
||||
### Step 1: 初步分析
|
||||
|
||||
打开流量包
|
||||
打开流量包。
|
||||
|
||||
发现存在上传一句话木马行为
|
||||
|
||||
|
||||
### Step 2: 深入研究
|
||||
|
||||
说明下一步你做了什么,例如:尝试了什么Payload,或者使用了哪些工具来分析。
|
||||
跟进流量,发现流量被加密过
|
||||
|
||||
|
||||
使用cyberchef解码,发现发送的流量和返回的流量都是base64编码的
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
### Step 3: 获取Flag
|
||||
|
||||
描述你是如何成功解出题目并获取到flag的。
|
||||
在最后一段流量中发现flag
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
|
||||
## 解题工具
|
||||
|
||||
- 工具1 (例如:Burp Suite、Ghidra)
|
||||
- 工具2
|
||||
- ...
|
||||
- wireshark
|
||||
- cyberchef
|
||||
|
||||
## Flag
|
||||
|
||||
`flag{这里是你找到的flag}`
|
||||
`flag{8717eafc55a9c4aea6b11fc26b7c752a`
|
||||
|
||||
## 总结
|
||||
|
||||
总结一下这个题目,你觉得有趣的点,或者是学到的新知识。
|
||||
|
||||
---
|
||||
|
||||
感谢阅读,如有疑问或建议,欢迎提出。
|
||||
|
||||
|
||||
0
src/uploads/blankfile
Normal file
0
src/uploads/blankfile
Normal file
Loading…
x
Reference in New Issue
Block a user
粤公网安备44010602013451号
