2020-05-27から1日間の記事一覧
CTFtime.org / TJCTF 2020 題名 配点 AC人数 解説 Broken Button 10 1133/1209 Broken Button [TJCTF 2020] - はまやんはまやんはまやん Login 30 674/1209 Login [TJCTF 2020] - はまやんはまやんはまやん Sarah Palin Fanpage 35 595/1209 Sarah Palin Fan…
Written by nthistle It seems like the TJCTF organizers are secretly running an underground virtual horse racing platform! They call it 'Moar Horse 4'... See if you can get a flag from it! Source https://moar_horse.tjctf.org/ 薄暗い怪しいサ…
![はてなブックマーク - Moar Horse 4 [TJCTF 2020]](https://b.hatena.ne.jp/entry/image/https://blog.hamayanhamayan.com/entry/2020/05/27/223903)
Written by KyleForkBomb They called me a clown for using PHP, but little did they know I used military-grade SHA256! I'll bet you can't even login to a single account! Note: brute force is not required http://circus.tjctf.org/ 整ったサイト…
![はてなブックマーク - Circus [TJCTF 2020]](https://b.hatena.ne.jp/entry/image/https://blog.hamayanhamayan.com/entry/2020/05/27/215130)
Written by saisree So I've been developing this really cool site where you can read text files! It's still in beta mode, though, so there's only six files you can read. http://file_viewer.tjctf.org/ Hint: The flag is in one directory somew…
![はてなブックマーク - File Viewer [TJCTF 2020]](https://b.hatena.ne.jp/entry/image/https://blog.hamayanhamayan.com/entry/2020/05/27/214919)
Written by avz92 Team Congenial-Octo-Couscous is looking to replace one of its members for the Battlecode competition, who carried the team too hard and broke his back. Until a neural net can take his place, the team wants a 4th member. Fi…
![はてなブックマーク - Congenial Octo Couscous [TJCTF 2020]](https://b.hatena.ne.jp/entry/image/https://blog.hamayanhamayan.com/entry/2020/05/27/214644)
Written by saisree It seems your login bypass skills are now famous! One of my friends has given you a challenge: figure out his password on this site. He's told me that his username is admin, and that his password is made of up only lower…
![はてなブックマーク - Weak Password [TJCTF 2020]](https://b.hatena.ne.jp/entry/image/https://blog.hamayanhamayan.com/entry/2020/05/27/190720)
Written by saisree Login as admin you must. This time, the client is of no use :(. What to do? https://login_sequel.tjctf.org/ 調査 適当に'をまず入れてみるが反応に変わりはない ソースコードを見てみるとヒントが書いてある
![はてなブックマーク - Login Sequel [TJCTF 2020]](https://b.hatena.ne.jp/entry/image/https://blog.hamayanhamayan.com/entry/2020/05/27/190532)
Written by jpes707 Are you a true fan of Alaska's most famous governor? Visit the Sarah Palin fanpage. https://sarah_palin_fanpage.tjctf.org/ サラ・ペイリンとは、アメリカの政治家らしい。 ティーパーティー運動もしてるらしい。teeコマンドか?…
![はてなブックマーク - Sarah Palin Fanpage [TJCTF 2020]](https://b.hatena.ne.jp/entry/image/https://blog.hamayanhamayan.com/entry/2020/05/27/190251)
Written by saisree Could you login into this very secure site? Best of luck! https://login.tjctf.org/ 前提知識 javascript難読化解除 md5パスワード解読 解法 ログインしてみるが、画面遷移が無い。jsで認証操作をしているみたい。 ソースコードを見…
![はてなブックマーク - Login [TJCTF 2020]](https://b.hatena.ne.jp/entry/image/https://blog.hamayanhamayan.com/entry/2020/05/27/185929)
Written by saisree This site is telling me all I need to do is click a button to find the flag! Is it really that easy? https://broken_button.tjctf.org/ 前提知識 html読解 解説 とりあえず押してみるが、何も反応がない。 ソースコードを見てみる…
![はてなブックマーク - Broken Button [TJCTF 2020]](https://b.hatena.ne.jp/entry/image/https://blog.hamayanhamayan.com/entry/2020/05/27/185640)
