pop链是啥,我不知道昂
-
ctfshow月饼杯II
web签到一个签到 123456789101112<?php//Author:H3h3QAQinclude "flag.php";highlight_file(__FILE__);error_reporting(0);if (isset($_GET["YBB"])) { if (hash("md5", $_GE... -
ctfshow月饼杯
web1_此夜圆1234567891011121314151617181920212223242526272829303132333435<?phperror_reporting(0);class a{ public $uname; public $password; public function __construct($uname,$password) { ... -
浅析phar反序列化
phar文件欧耶
-
KCTF2024
只有一个web,我可怎么活哇
-
Ubuntu16.04配置pwn基础环境
虽然我是web🐕,但是现在确实需要它!
-
NPUCTF2020
[NPUCTF2020]ReadlezPHPctrl+u看源码发现路由 1<a href="./time.php?source"></a></p> 12345678910111213141516171819202122232425<?php#error_reporting(0);class HelloPhp{ p... -
GKCTF2021
Here’s something encrypted, password is required to continue reading.
-
浅析flask内存马
内存马的乾坤
-
[WesternCTF2018]shrine
1234567891011121314151617181920212223242526import flaskimport osapp = flask.Flask(__name__)app.config['FLAG'] = os.environ.pop('FLAG')@app.route('/')def index(): re...