下载文件后,老规矩,查看属性并扔进010查看,发现有藏文件,扔进binwalk查看
发现有藏rar文件,binwalk -e 分离出来:
扔进ARCHPR尝试4位数字密码爆破后成功:
得到一个txt,内容看不懂哈哈哈,尝试各种解码也毫无头绪
无头绪后查看wp,看来需要字频统计,接下来上大佬的脚本:
# -*- coding:utf-8 -*-
alphabet = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890!@#$%^&*()_+- =\\{\\}[]"
strings = open('./count.txt').read()
result = {}
for i in alphabet:
counts = strings.count(i)
i = '{0}'.format(i)
result[i] = counts
res = sorted(result.items(), key=lambda item: item[1], reverse=True)
for data in res:
print(data)
for i in res:
flag = str(i[0])
print(flag[0], end="")