uplad_ Labs first three levels

Catalog

Pass_01

Pass_02

Pass_03

The problem solving process

Pass_01

First upload a picture and try , Upload successful

The title says to upload one webshell Get to know webshell

webshell：webshell That is to say asp、php、jsp perhaps cgi etc. Webpage A code execution environment in the form of a file , Mainly used for website management 、 Server management 、 Permission management and other operations . Just upload a code file , Visit through website , Many daily operations can be carried out .

So I want to upload one php Documents of the same type , Upload PHP When you file

Take another look at the tips

  The description is the front end js verification

Upload a php The file of , Change the foot code to the one allowed on the title .jpg|.png|.gif Image format , Upload successfully and then burpsuite Carry out the bag . First, find the agent in the settings

Manual use burpsuite Proxy for port

  Construct a PHP The file of , Then change the file format to .png, open burpsuite Carry out the bag

  Show the inside png Change it to php

  Then put the bag d

Pass_02

The second level is still uploaded php File to try

  The second level is somewhat similar to the first level , Let's check the source code

Only upload is allowed jpeg/.png/.gif Files of type , Like the first level, first find the agent in the setting , Manual use burpsuite Proxy for port , Upload the allowed file types first , And then with burpsuite Carry out the bag .

Pass_03

Take a look at the source code

The front clearance is only allowed to upload image type files , And the third level is not allowed to upload php Documents of the same type , It is called blacklist verification , Special suffixes . Convert case , No way to remove strings .

Put the document corner code php Change it to php1 Try to find that the upload is successful