CTF校队暑期练习2021.6.21
CTF题目 June. 21st 2021
Web: POST Practice
This website requires authentication, via POST. However, it seems as if someone has defaced our site. Maybe there is still some way to authenticate?
在Fiddler下POST没成功……真奇怪。
试了下发现网站下有robots.txt,里面记录了flag的位置。
6.23 更新
POST需要带上参数Content-Type: application/x-www-form-urlencoded。
Crypto: Base 2 2 the 6
There are so many different ways of encoding and decoding information nowadays… One of them will work!
Q1RGe0ZsYWdneVdhZ2d5UmFnZ3l9
Base64加密,在CyberChef里面解密即可。
Crypto: Morse Code
..-. .-.. .- –. … .- – ..- . .-.. – — .-. … . .. … -.-. — — .-.. -… -.– - …. . .– .- -.– .. .-.. .. -.- . -.-. …. . . …
Morse Code,在CyberChef里面解密即可。
Forensics: WOW…. So Meta
This photo was taken by our target. See what you can find out about him from it.
https://mega.nz/#!ifA2QAwQ!WF-S-MtWHugj8lx1QanGG7V91R-S1ng7dDRSV25iFbk
链接下载一张图片:
图片的EXIF信息中有flag,可以用图虫查看。
Misc: QR Code
Do you remember something known as QR Code? Simple. Here for you :
https://mega.nz/#!eGYlFa5Z!8mbiqg3kosk93qJCP-DBxIilHH2rf7iIVY-kpwyrx-0
链接下载一张二维码:
扫描出来结果是:c3ludCB2ZiA6IGEwX29icWxfczBldHJnX2RlX3BicXI=。
用CyberChef进行Base64解密,看起来像凯撒密码,取ROT13,得到flag。
- Author: HuaHuaY
- Link: https://www.huahuaorz.com/post/CTF%E6%A0%A1%E9%98%9F%E7%BB%83%E4%B9%A0/CTF%E6%A0%A1%E9%98%9F%E6%9A%91%E6%9C%9F%E7%BB%83%E4%B9%A02021.6.21/
- License: This work is under a 知识共享署名-非商业性使用-禁止演绎 4.0 国际许可协议. Kindly fulfill the requirements of the aforementioned License when adapting or creating a derivative of this work.