20220216-MISC-BUUCTF-另外一个世界-winhex,ASCII转换-FLAG- ZIP文件提取并修复-假如给我三天光明-ZIP改RAR,摩丝电码波形转换-神秘龙卷风brainfuck
第一題—MISC-BUUCTF-另外一個世界
注意:得到的 flag 請包上 flag{} 提交
【1】下載附件并解壓,得到monster.jpg
【2】分析這張圖片:
(1)binwalk
這應該是一張純正的JPG圖片
(2)將圖片放到winhex中:
直接查找文本flag,沒有找到什么
但是看到最后有一串01
01101011011011110110010101101011011010100011001101110011
一共56個數字:
如果八位為一組轉變成ASCII:
網站:https://www.qqxiuzi.cn/bianma/ascii.htm
嘗試flag{koekj3s}
居然正確了
另外一個世界-題目總結
仔細看winhex,發現結尾有01,就嘗試ASCII
第二題—MISC-BUUCTF- FLAG
感謝 牌森 同學提供題目~
注意:請將 hctf 替換為 flag 提交,格式 flag{}
【1】下載附件,是一張圖片:
【2】圖片分析:
(1)binwalk
發現有zlib,偏移量是0x29,然后用腳本解壓,發現不成功:
(2)winhex
(3)stegaolve
用Data Extract
發現ZIP的文件頭
save Bin—保存為1.zip
如果winRAR直接打開:
嘗試用修復軟件修復:(修復軟件如果沒有的話,我在這篇博客最后提供給大家)
修復后的ZIP文件:
解壓:
將修復后的文件改為1.txt,然后記事本查看:
得到的flag就是:hctf{dd0gf4c3tok3yb0ard4g41n~~~}
將hctf換成flag
flag{dd0gf4c3tok3yb0ard4g41n~~~}
flag正確
FLAG-解題總結
【1】下載文件,使用stegsolve打開,然后Data Extract ,然后存為ZIP文件(一定要熟悉ZIP的文件頭,ZIP Archive (zip),文件頭:504B0304),然后解壓(不能成功解壓的用修復軟件修復)。
【2】常見文件頭補充:
JPEG (jpg),文件頭:FFD8FFE1
PNG (png),文件頭:89504E47
GIF (gif),文件頭:47494638
TIFF (tif),文件頭:49492A00
Windows Bitmap (bmp),文件頭:424DC001
CAD (dwg),文件頭:41433130
Adobe Photoshop (psd),文件頭:38425053
Rich Text Format (rtf),文件頭:7B5C727466
XML (xml),文件頭:3C3F786D6C
HTML (html),文件頭:68746D6C3E
Email [thorough only] (eml),文件頭:44656C69766572792D646174653A
Outlook Express (dbx),文件頭:CFAD12FEC5FD746F
Outlook (pst),文件頭:2142444E
MS Word/Excel (xls.or.doc),文件頭:D0CF11E0
MS Access (mdb),文件頭:5374616E64617264204A
WordPerfect (wpd),文件頭:FF575043
Adobe Acrobat (pdf),文件頭:255044462D312E
Quicken (qdf),文件頭:AC9EBD8F
Windows Password (pwl),文件頭:E3828596
ZIP Archive (zip),文件頭:504B0304
RAR Archive (rar),文件頭:52617221
Wave (wav),文件頭:57415645
AVI (avi),文件頭:41564920
Real Audio (ram),文件頭:2E7261FD
Real Media (rm),文件頭:2E524D46
MPEG (mpg),文件頭:000001BA
MPEG (mpg),文件頭:000001B3
Quicktime (mov),文件頭:6D6F6F76
Windows Media (asf),文件頭:3026B2758E66CF11
MIDI (mid),文件頭:4D546864
【3】修復軟件:(百度網盤鏈接)
鏈接: https://pan.baidu.com/s/1Lo5ZVKxF6JhqVFkYe_A_Gg 提取碼: 67du
–來自百度網盤超級會員v4的分享
第三題—MISC-BUUCTF-假如給我三天光明
注意:得到的 flag 請包上 flag{} 提交
【1】下載附件并解壓:
但是music.zip無法打開:
【2】先簡單分析music.zip:
原來是一個RAR文件,將后綴改成RAR,可以成功打開:
但是打開這個music.wav需要密碼:
密碼估計是從圖片中尋找
感覺就是和下方的這幾張小圖有關,但是沒什么思路,后來百度知道,原來是跟盲文有關:
對照著上面的表,得到 kmdonowg
將kmdonowg作為密碼,能打開music.wav,聽上去像電報。
用庫樂隊打開:
轉換為摩斯密碼(長的是- 短的是. 空格記為 空格)
就是:
-.-. - …-. .-- .–. . … ----- —… --… …-- …— …–… …— …-- -… --…
在線解密:
https://www.ip138.com/mosi/
猜測flag{CTFWPEI08732?23DZ}
顯示錯誤。
如果嘗試小寫:
flag{ctfwpei08732?23dz}
又不對
猜測是flag{wpei08732?23dz}
成功:
假如給我三天光明-做題總結
【1】得到的文件(ZIP)經過binwalk發現是RAR,改后綴
【2】然后發現打開music.wav需要密碼,估計是從圖片中來的,居然是盲文(做題要結合情景靈活變通)
【3】解出盲文,打開wav,猜測是電報類型的密碼,看波形轉為摩絲密碼,在線解密,最后得到flag也要靈活變通的嘗試
第四題—MISC-BUUCTF-神秘龍卷風
神秘龍卷風轉轉轉,科學家用四位數字為它命名,但是發現解密后居然是一串外星人代碼!!好可怕! 注意:得到的 flag 請包上 flag{} 提交
【1】下載附件ZIP,并解壓:
神秘龍卷風.rar再解壓,發現需要輸入密碼:
【2】ARCHPR暴力解壓:
根據題目信息“科學家用四位數字為它命名”,嘗試解壓:
暴力破解得到:
密碼是:5463
里面有一個txt文件:
內容如下:
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
+++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++
+++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++
+++++++++++++++++++++++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++
++++++.>++++++++++++++++++++++
++++++++++++++++++++++++++
++++++++++++++++++++++++
++++++++++++++++++++++
+++++++++.>+++++++++
++++++++++++++++++
++++++++++++++++++
++++++++++++++++++
++++++++++++++++++
++++++++++++++++++++
++++++++++++++++++++++.>
+++++++++++++++++++++++++++
+++++++++++++++++++++++++++++++
+++++++++++++++++++++++++++++++++++++
++++++.>++++++++++++++++++++++++++++++++++
++++++++++++++++++.>+++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++++++++++++++++++
+++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
+++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
+++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>
+++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>
毫無頭緒,后來百度才知道:
這是brainfuck代碼,使用在線執行網站運行即可得到flag
網站:http://bf.doleczek.pl/
flag{e4bbef8bdf9743f8bf5b727a9f6332a8}
神秘龍卷風–題目總結
【1】下載附件,提示四位數暴力破解解壓密碼
【2】破解后看到一堆+++++++.>++++,需要有積累,是Brainfuck,在線運行得到結果,網站是:http://bf.doleczek.pl/
總結
以上是生活随笔為你收集整理的20220216-MISC-BUUCTF-另外一个世界-winhex,ASCII转换-FLAG- ZIP文件提取并修复-假如给我三天光明-ZIP改RAR,摩丝电码波形转换-神秘龙卷风brainfuck的全部內容,希望文章能夠幫你解決所遇到的問題。
- 上一篇: UnaryOperator函数式接口
- 下一篇: Luogu P3975 [TJOI201