Welcome

JBNRZ

Todo List

简单的近期规划,时不时更新

对于近期的一些安排(CTF or 开发) Todo List 重构一下 2022 年 6 月 开坑的 QQ 把 blog 迁移为 wordpress 搭建一个服务器,拥有公网 IP ,脱离云服务器厂商限制 Date 2023-02-26 13:00:00 ...

Posted by JBNRZ on 2023-02-26

Tools Cipher

some useful tools for misc and crypto

jjencode与aaencode https://www.qtool.net/decode Ook and brainfuck https://www.splitbrain.org/services/ook 摩尔斯密码 http://www.all-tool.cn/Tools/morse/ http://codertab.com/JsUnFuck https://morsecod......

Posted by JBNRZ on 2022-09-23

MISC 古典密码

File Template

Some File Template

Systemctl /etc/systemd/system/XXXXX.service 1234567891011[Unit]Description=XXXXX[Service]Type=simpleUser=rootExecStart=[shell]Restart=on-failure[Install]WantedBy=multi-user.target systemctl daemon-......

Posted by JBNRZ on 2023-03-03

File Template

Hgame Final

Hgame 2023 Final

Web Final Flask 题解 常规ssti 1{{url_for.__globals__['os'].popen('/readflag').read()}} PHP-Blog 题解 登陆admin,可以同过创建新文章的方式写入一句话木马 1<?php system('echo &q......

Posted by JBNRZ on 2023-03-13

MISC WEB

无线攻击

记录攻击 Wi-Fi 的简单操作(成功打出密码纯属巧合)

单纯记录学习,未进行破坏行为,未泄露对方信息 配置 / 工具: Kali Linux live airmon-ng airodump-ng aireplay-ng aircrack-ng USB 外置网卡 攻击对象 bssid: XX:XX:XX:XX:XX:XX 开始监听 需要网卡支持 montior 查看本机网卡信息 1ifconfig 3. 启动监听模式 1airmon-......

Posted by JBNRZ on 2023-02-22

airodump-ng

Wordpress

wordpress 搭建记录

Install 1234567apt-get updateapt install apache2 mysql-server php-gd php-fpm php-mysql libapache2-mod-php wget mlocate -ymv /var/www/html/index.html /var/www/html/index~.htmlwget https://cn.wordpre......

Posted by JBNRZ on 2023-02-13

Wordpress

Bilibili Download

通过 API 下载视频

依据 API 收集项目 编写 Python Script 允许下载多P视频 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283......

Posted by JBNRZ on 2023-02-10

WEB Bilibili

西湖论剑初赛

Misc

Misc take_the_zip_easy 对压缩包进行明文攻击,以文件名 dasflow.pcapng 偏移 30 再加上文件头 504B0304 进行攻击 123// 注意 echo -n 去除 '\n'echo -n "dasflow.pcapng" > ../test./bkcrack -C ../zipeasy.zip -c da......

Posted by JBNRZ on 2023-02-08

MISC FORENSICS 西湖论剑

Hgame Week4

The Fourth Week of HGAME

Hgame: week4 Rank: School All 1 17 Hgame 2023 Rank: School All 1 14 就做了 Web 和 取证,太菜了 Orz Web Shared Diary 原型链污染,过滤了 __proto__,用 constructor.prototype 绕过 merge 函数 1234567891011......

Posted by JBNRZ on 2023-02-07

MISC WEB

Hgame Week3

The Third Week of HGAME

Hgame: week3 Rank: School All 4 76 Hgame 2023 Rank: School All 1 14 对不起,摆烂了,一周就没做几天 Web Ping to the host 考察命令拼接,其中过滤了空格和一些关键词,在响应头中发现后端有 python ,利用 requests 带出 flag 先安装 reque......

Posted by JBNRZ on 2023-01-31

MISC WEB CRYPTO IOT BLOCKCHAIN
特色标签
First Vidar easy BUUCTF MISC 古典密码 CBC-DASCTF 省赛 WEB RCE 0rays HNCTF JAIL 自增 UUCTF CRYPTO RSA 教程 PYTHON ISCTF BASE Dokcer MYSQL PWN CTFSHOW UNCTF NCTF SYC REVERSE FORENSICS JAVA SpringBoot RUST Reflect LifeGame JS IOT BLOCKCHAIN Volatility Wordpress Bilibili airodump-ng 西湖论剑 File Template
关于自己
avatar_pic

Be a CTFer...

最近博文
链友
archives
categories
ESC