web23
1.关上网页后发现如下php代码
2.须要get上传一个token,
3.token值经md5加密后需满足等式
python payload:
a="0123456789qwertyuiopasdfghjklzxcvbnm"
for i in a:
for j in a:
t=(str(i)+str(j)).encode("utf-8")
m=hashlib.md5(t).hexdigest()
if m[1:2]==m[14:15] and m[14:15]==m[17:18]:
if ((int(m[1:2])+int(m[14:15])+int(m[17:18]))/int(m[1:2]))==int(m[31:32]):
print(t)解得token=3j,得flag
发表回复