当前位置:网站首页>Ctfhub web - divulgation d'informations - traversée du Répertoire
Ctfhub web - divulgation d'informations - traversée du Répertoire
2022-06-25 06:40:00 【Long Street 395】
Il y a deux façons de:
1.Ouvrez manuellement le fichier un par un pour trouver
2.UtiliserpythonCode pour accéder aux fichiers du site
J'utilise la deuxième méthode:
import requests
url = "http://challenge-011f662b1a24880f.sandbox.ctfhub.com:10800/flag_in_here"
for i in range(5):
for j in range(5):
url_final = url + "/" + str(i) + "/" + str(j)
r = requests.get(url_final)
r.encoding = "utf-8"
get_file = r.text
if "flag.txt" in get_file:
print(url_final)
Cette sortie contientflag.txtLiens vers
Cliquez sur le lien,Disponibleflag
flagPour:
ctfhub{9313b9e3a2b2169610bc4ec4}Tips:requests.get Accès à l'information sur la page web
r.textC'est une page webHTMLCode
Jugement finalflag.txt Dans un lien
Le lien de référence ici est :http://Admiralll https://www.bilibili.com/read/cv15764985 Origine:bilibili
边栏推荐
- An interview question record about where in MySQL
- @Detailed explanation of valid annotation usage
- アルマ / 炼金妹
- DataX tutorial (09) - how does dataX achieve speed limit?
- How to record a database [closed] - how to document a database [closed]
- Cve-2022-23131 - bypass SAML SSO authentication
- Wechat applet authorization login + mobile phone sending verification code +jwt verification interface (laravel8+php)
- [从零开始学习FPGA编程-43]:视野篇 - 后摩尔时代”芯片设计的技术演进-2-演进方向
- Detailed explanation of @jsoninclude annotation in Jackson
- How to realize the stable output of 3.3v/3.6v (1.2-5v) voltage of lithium battery by using the voltage rise and fall chip cs5517
猜你喜欢
Navicat防止新建查询误删
CTFHub-Web-信息泄露-目录遍历
![[short time energy] short time energy of speech signal based on MATLAB [including Matlab source code 1719]](/img/a1/0cb61368cb1d0817d74781084a4466.jpg)
[short time energy] short time energy of speech signal based on MATLAB [including Matlab source code 1719]
ACWING/2004. Misspelling
Understand what MTU is
Cannot activate inspection type when SAP retail uses transaction code mm41 to create commodity master data?
What is the slice flag bit
有能力的人从不抱怨大环境!
Brief introduction and use of JSON
After five years of software testing in ByteDance, I was dismissed in December to remind my brother of paddling
随机推荐
ARM processor operating mode
Why study discrete mathematics
JS to determine whether an element exists in the array (four methods)
@Principle of preauthorize permission control
Analysis of China's food cold chain logistics, output of quick-frozen noodles and rice products and operation of major enterprises in 2021 [figure]
Flask 的入门级使用
[short time average zero crossing rate] short time average zero crossing rate of speech signal based on MATLAB [including Matlab source code 1721]
Personal blog system graduation project opening report
Microsoft issued a document to celebrate Net 20th anniversary!
JD 8 fleet stores search history, deletes history, clears history (not finished)
[core content and derivation] the mystery of human memory system may be just like this
Leetcode 2163. Minimum difference of sum after element deletion
集群常用群起脚本
Grouped uitableview has 20px of extra padding at the bottom
cos(a+b)=cosa*cosb-sina*sinb的推导过程
Derivation of COS (a-b) =cosa*cosb+sina*sinb
JS dynamic table creation
アルマ / 炼金妹
Asemi fast recovery diode us1m parameters, us1m recovery time, us1m voltage drop
What is the IP address