当前位置:网站首页>CTF stegano practice stegano 9
CTF stegano practice stegano 9
2022-07-05 03:52:00 【qq_ twenty-nine million five hundred and sixty-six thousand six】
First step , First use TrID The tool identifies the types of two files :
among ,ELF File is Linux Main executables under . A more accurate analysis can use linux Under the file command , See is coredump file :
As for what is coredump, You can see hereChange suffix to open pcap file , adopt Ctrl+F find server hello In the bag session_id:
Client ( Browser side ) Through a named ssl_session_st Structure storage of SSL Related key parameters , among ssl_session_st Some data structures of are shown as follows :
Use C32Asm open file2 And search for 16 Base number :
Check out session-id, Forward should be 0x00000020, The length is 32, It should be master-key 了 :
Get flag:
边栏推荐
- Talk about the SQL server version of DTM sub transaction barrier function
- Thread Basics
- [punch in questions] integrated daily 5-question sharing (phase III)
- 优先使用对象组合,而不是类继承
- [an Xun cup 2019] not file upload
- MindFusion.Virtual Keyboard for WPF
- Blue Bridge Cup single chip microcomputer -- PWM pulse width modulation
- 【PHP特性-变量覆盖】函数的使用不当、配置不当、代码逻辑漏洞
- How about programmers' eyesight| Daily anecdotes
- 为什么百度、阿里这些大厂宁愿花25K招聘应届生,也不愿涨薪5K留住老员工?
猜你喜欢
Talk about the SQL server version of DTM sub transaction barrier function
DMX parameter exploration of grandma2 onpc 3.1.2.5
![[数组]566. 重塑矩阵-简单](/img/3c/593156f5bde67bd56828106d7bed3c.png)
[数组]566. 重塑矩阵-简单
ABP vNext microservice architecture detailed tutorial - distributed permission framework (Part 2)
How about programmers' eyesight| Daily anecdotes
![[groovy] string (string splicing | multi line string)](/img/c7/2471d13e5d49cca3727d05b4f9fb36.jpg)
[groovy] string (string splicing | multi line string)
Test d'automatisation de l'interface utilisateur télécharger manuellement le pilote du navigateur à partir de maintenant
Deep learning - LSTM Foundation
Resolved (sqlalchemy+pandas.read_sql) attributeerror: 'engine' object has no attribute 'execution_ options‘
Clickhouse同步mysql(基于物化引擎)
随机推荐
灵魂三问:什么是接口测试,接口测试怎么玩,接口自动化测试怎么玩?
Is there a sudden failure on the line? How to make emergency diagnosis, troubleshooting and recovery
[web Audit - source code disclosure] obtain source code methods and use tools
Huawei MPLS experiment
NEW:Devart dotConnect ADO.NET
ABP vNext microservice architecture detailed tutorial - distributed permission framework (Part 2)
深度学习——LSTM基础
DECLARE_ WAIT_ QUEUE_ HEAD、wake_ up_ Interruptible macro analysis
How to define a unified response object gracefully
IronXL for .NET 2022.6
MindFusion. Virtual Keyboard for WPF
一文带你了解BI的前世今身与企业数字化转型的关系
Test d'automatisation de l'interface utilisateur télécharger manuellement le pilote du navigateur à partir de maintenant
Unity implements the code of the attacked white flash (including shader)
glibc strlen 实现方式分析
线程基础知识
Basic authorization command for Curl
[software reverse - basic knowledge] analysis method, assembly instruction architecture
Share the newly released web application development framework based on blazor Technology
In MySQL Association query, the foreign key is null. What if the data cannot be found?