分类: CTF

63 篇文章

[GYCTF2020]Easyphp
[GYCTF2020]Easyphp 扫描目录 首先扫描目录发现有www.zip,下载回来得到3个文件 代码审计 index.php <?php require_once "lib.php"; if(isset($_GET['action'])){ require_once(__DIR__."/".$_GET['action'…
DVWA
DVWA 部署DVWA Docker #下载vulnerables/web-dvwa镜像 docker pull vulnerables/web-dvwa; #运行镜像启动容器 docker run --rm -it -p 80:80 vulnerables/web-dvwa 然后浏览器访问http://localhost/setup.php即可访…
[BUUCTF 2018]Online Tool
[BUUCTF 2018]Online Tool <?php if (isset($_SERVER['HTTP_X_FORWARDED_FOR'])) { $_SERVER['REMOTE_ADDR'] = $_SERVER['HTTP_X_FORWARDED_FOR']; } if(!isset($_GET[…