?>
解密结果:
api.php
checktable.php
data
favcon.ico
index.php
ioncube.php
robots.txt
secret.txt
theme
xhp
xxx1.php
ACCAGTAAAACG{AATTCAACAACATGCTGCCTACA-AACAAAAACAAT-TCATCAACAAAAACAACTGGTGA-TTCTTCTCATGATGAAAACTTCTTCTGCTGC}
flag经过DNS Cipher处理:https://github.com/karma9874/DNA-Cipher-Script-CTF
替换几位会发现flag格式是uuid形式的,按照以下这个规则替换即可
‘AAA’:‘a’
‘AAC’:‘b’
‘AAG’:‘c’
‘AAT’:‘d’
‘ACA’:‘e’
‘ACC’:‘f’
‘TCA’:‘1’
‘TCC’:‘2’
‘TCG’:‘3’
‘TCT’:‘4’
‘TGA’:‘5’
‘TGC’:‘6’
‘TGG’:‘7’
‘TGT’:‘8’
‘TTA’:‘9’
‘TTC’:‘0’
有丢失,尝试根据DNA Cipher的规则猜测
ACC AGT AAA ACG { AAT TCA ACA ACA TGC TGC
f l a g { d 1 e e 6 6
[T]CT ACA - AAC AAA AAC AAT - TCA TCA ACA AA[A/C/G/T]
4 e - b a b d - 1 1 e a/b/c/d
AAC AAC TGG TGA - TTC TTC TCA TGA TGA AA[A/C/G/T]
b b 7 5 - 0 0 1 5 5 a/b/c/d
[A]AC TTC TTC TGC TGC}
b 0 0 6 6}
最终flag: flag{d1ee664e-babd-11ed-bb75-00155db0066}
0x04 阿尼亚
netpixeljihad.png
是在提醒PixelJihad stego
: https://sekao.net/pixeljihad/
不过需要密码,图片末尾附加了一串数字,两次hex之后Text Encoding Brute Force