Category - DragonCTF2018

3NTERPRISE s0lution (Web, 278)

difficulty: easy (28 solvers)

Dear all

Welcome to our new enterprise solution.
You can leave your business notes here.
Data is safe - cause we use strong encryption !
It is soooo safe, that even I am using this system.
You even can audit the code here
Plz DO NOT hax this - cause it is impossible !1111

Regards
Martin, the Webmaster

URL: http://solution.hackable.software:8080

先注册一个账户
1.png

登录很奇怪,用户名输入和密码输入分开了
2.png
3.png

可以添加笔记
4.png

note list可以查看笔记
5.png
6.png
右键源码

  1. <!-- 加密后的hex -->
  2. <textarea rows=20 cols=40 id="note_data">4EBD90F6038DE0AB06FC</textarea><br>
  3. <div id="konsole">
  4. Note encrypted ... <br>
  5. </div>
  6. <script>
  7. var org_content = '';
  8. var pos = 0;
  9. function ll(msg){ jQuery("#konsole").append("[+] " + msg + "<br>"); }
  10. window.setTimeout(function(){ fetch_key() }, 1000)
  11. function fetch_key(){
  12. ll("getting key ... ");
  13. jQuery.get(
  14. "/note/getkey", // 请求/note/get
Windows 下面的一道逆向题目,主界面如图,需要输入4个code,然后加上一个flag。 ![main](https://leanote.com/api/file/getImage?fileId=5bb1d16eab644132ff002881) 逆向可以发现主要逻辑并不复杂: ![fun1](https://leanote.com/api/file/getImage?fileId=5bb