ctf writeup
Boogle_
于无声处听惊雷
展开
-
bugku ctf平台之sql注入1 write up
题目链接 : http://103.238.227.13:10087///过滤sql$array = array('table','union','and','or','load_file','create','delete','select','update','sleep','alter','drop','truncate','from','max','min','orde原创 2017-05-25 17:32:14 · 4500 阅读 · 1 评论 -
bugku ctf文件包含 writeup
打开题目,直接显示代码<?php include "flag.php"; $a = @$_REQUEST['hello']; eval( "var_dump($a);"); show_source(__FILE__);?>看到Request函数,很明显可以想到文件包含,这里hello是可控的,那么,就可以构造包含语句,?hello=1);show_source('f原创 2017-05-25 22:24:12 · 6330 阅读 · 0 评论 -
bugku ctf平台之变量1 write up
打开题目,显示源码:flag In the variable ! <?php error_reporting(0);include "flag1.php";highlight_file(__file__);if(isset($_GET['args'])){ $args = $_GET['args']; if(!preg_match("/^\w+$/",$args)){原创 2017-05-26 18:26:43 · 1355 阅读 · 1 评论