Loading

2023年8月30日
Bugku-Web31
摘要: ![images](https://img2023.cnblogs.com/blog/1845942/202308/1845942-20230830085740155-964345158.png) 后台扫描发现有robots.txt ![images](https://img2023.cnblogs 阅读全文
posted @ 2023-08-30 08:58 HE1JA 阅读(26) 评论(0) 推荐(0)
Bugku-Web29
摘要: ![images](https://img2023.cnblogs.com/blog/1845942/202308/1845942-20230830085729143-2084999254.png) sha数组绕过问题,和md5类似方法:: ``` <?php highlight_file('fla 阅读全文
posted @ 2023-08-30 08:58 HE1JA 阅读(16) 评论(0) 推荐(0)
Bugku-Web27
摘要: ![images](https://img2023.cnblogs.com/blog/1845942/202308/1845942-20230830085717435-1665980578.png) md5 collision(md5 碰撞) 一般意思,用数据绕过就可以了;;这是我目前所学到的! ! 阅读全文
posted @ 2023-08-30 08:57 HE1JA 阅读(30) 评论(0) 推荐(0)
Bugku-Web26
摘要: 眼睛瓢太快,看到了评论区的评论,这题不难! ![images](https://img2023.cnblogs.com/blog/1845942/202308/1845942-20230830085705540-404238906.png) 考点主要是在Referer 在burp中增加Referer 阅读全文
posted @ 2023-08-30 08:57 HE1JA 阅读(22) 评论(0) 推荐(0)
Bugku-Web25
摘要: ![images](https://img2023.cnblogs.com/blog/1845942/202308/1845942-20230830085653609-1421900041.png) 第一次还是了解到这个sql约束工具,有点趣味吧... ![images](https://img20 阅读全文
posted @ 2023-08-30 08:57 HE1JA 阅读(26) 评论(0) 推荐(0)
Bugku-Web24
摘要: ![images](https://img2023.cnblogs.com/blog/1845942/202308/1845942-20230830085642245-1549816103.png) 5 ![images](https://img2023.cnblogs.com/blog/18459 阅读全文
posted @ 2023-08-30 08:57 HE1JA 阅读(12) 评论(0) 推荐(0)
Bugku-Web23
摘要: ![images](https://img2023.cnblogs.com/blog/1845942/202308/1845942-20230830085627725-1803621512.png) 这个题目告诉我,正则表达式还要好好的学一下;; ![images](https://img2023. 阅读全文
posted @ 2023-08-30 08:57 HE1JA 阅读(25) 评论(0) 推荐(0)
Bugku-Web19
摘要: ![images](https://img2023.cnblogs.com/blog/1845942/202308/1845942-20230830085552385-1903764495.png) ![images](https://img2023.cnblogs.com/blog/1845942 阅读全文
posted @ 2023-08-30 08:56 HE1JA 阅读(25) 评论(0) 推荐(0)
Bugku-Web18
摘要: ![images](https://img2023.cnblogs.com/blog/1845942/202308/1845942-20230829164532573-1017021044.png) ![images](https://img2023.cnblogs.com/blog/1845942 阅读全文
posted @ 2023-08-30 08:56 HE1JA 阅读(40) 评论(0) 推荐(0)
Bugku-Web22
摘要: 送给大家一个过狗一句话 `$poc="a#s#s#e#r#t"; $poc_1=explode("#",$poc); $poc_2=$poc_1[0].$poc_1[1].$poc_1[2].$poc_1[3].$poc_1[4].$poc_1[5]; $poc_2($_GET['s'])` ![i 阅读全文
posted @ 2023-08-30 08:56 HE1JA 阅读(17) 评论(0) 推荐(0)