OWASP
http://ctf.xidian.edu.cn/challenges
文件下载
-
下载是一个pdf文件,利用pdf隐写工具:wbStego4.3open打开
- 期间遇到输入密码,之间下一步,第四布创建一个txt来放数据,得到数据:
C9t, ln R DRrger YenY�, we cRn not dedlcRte, we cRn not conYecrRte, we cRn not 0RDDow t0lY gro9nd. T0e brRve men, Dlvlng Rnd deRd, w0o Y4r9ggDed 0ere, 0Rve conYecrRted lt, fRr Rbove o9r poor power to Rdd or detrRct. T0e worDd wlDD DlttDe note, nor Dong remember w0Rt we YRy 0ere, b9t lt cRn never forget w Rt t0ey dld 0ere. It lY for 9Y t0e Dlvlng, rR40er, to be dedlcRted 0ere to t0e 9nflnlY0ed worW w0lc0 t0ey w0o fo9g0t 0ere 0Rve t09Y fRr Yo nobDy RdvRnced. It lY rRt0er for 9Y to be 0ere dedlcRted to t0e greRt tRYW remRlnlng before 9Y—t0Rt from t0eYe 0onored deRd we tRWe lncreRYed devotlon to t0Rt cR9Ye for w0lc0 t0ey gRve t0e DRYt f9DD meRY9re of devotlon t0Rt we 0ere 0lg0Dy reYoDve t0Rt t0eYe deRd Y0RDD not Rve dled ln vRln—t0Rt t0lY nRtlon, 9nder xod, Y0RDD 0Rve R new blrt0 of freedom—Rnd t0Rt government of t0e peopDe, by t0e peopDe, for t0e peopDe, Y0RDD not perlY0 from t0e eRrt0.6zU3Px{Cl9Cl9Y0RWRDRWR}
- 最后{}内是flag,但是前面一大段字符有些被替换了,{}内的字符也是被替换过的,通过单词来找出对应规律:
0-->h
D-->l
R-->a
Y-->s
9-->u
C-->B
l-->i
W-->k - {biubiushakalaka}
网友评论