본문 바로가기

deayzl's blog

검색하기
deayzl's blog
프로필사진 deayzl
  • All (25)
    • About Me (1)
    • 1-day analysis (1)
      • Linux kernel (1)
      • Chromium (0)
    • CTF writeup (16)
      • HITCON CTF (2)
      • SECCON CTF (1)
      • GoN Open Qual CTF (6)
      • TyphoonCon CTF (2)
      • Codegate (1)
      • Incognito CTF (1)
      • Others (3)
    • CTF log (3)
    • wargame writeup | hint (2)
      • H4CKING GAME (0)
      • Webhacking.kr (1)
      • RootMe (1)
    • System hacking (0)
    • Cryptography (0)
    • Others (2)
Guestbook
Notice
Recent Posts
Recent Comments
Link
  • WeChall
  • RootMe
  • Dreamhack
«   2025/05   »
일 월 화 수 목 금 토
1 2 3
4 5 6 7 8 9 10
11 12 13 14 15 16 17
18 19 20 21 22 23 24
25 26 27 28 29 30 31
Tags
  • h4cking game
  • 웹해킹
  • 2022 Fall GoN Open Qual CTF
  • System Hacking
  • KAIST
  • christmas ctf
  • webhacking.kr
  • webhacking
  • WEB
  • TeamH4C
  • hacking game
  • reversing
  • CTF
  • crypto
  • hacking
  • 해킹
  • 워게임
  • Gon
  • Buffer Overflow
  • cryptography
  • Wreckctf
  • deayzl
  • ctf player
  • got overwrite
  • dreamhack
  • writeup
  • pwnable
  • Wargame
  • hack
  • python
more
Archives
Today
Total
관리 메뉴
  • 글쓰기
  • 방명록
  • RSS
  • 관리

목록CTF writeup/Incognito CTF (1)

deayzl's blog

[2022 Incognito CTF] writeups

1. crawl import requests s = requests.Session() counter = 1 while True: req = requests.Request('GET', 'http://ctf.incognito.kr:9000/ctf/mailbox') pre = s.prepare_request(req) resp = s.send(pre) csrf = resp.text[resp.text.find("{ \"X-CSRFToken\": '")+len("{ \"X-CSRFToken\": '"):] csrf = csrf[:csrf.find('\'')] req = requests.Request('POST', 'http://ctf.incognito.kr:9000/ctf/mailbox/mail_detail') p..
CTF writeup/Incognito CTF 2023. 3. 27. 20:10
Prev 1 Next
Blog is powered by kakao / Designed by Tistory

티스토리툴바