香港網安奪旗賽HKCERT CTF 2024 Write up(上) | CTF导航
Tags
attack-pattern: | Data Model Models Credentials - T1589.001 Python - T1059.006 Server - T1583.004 Server - T1584.004 |
Common Information
Type | Value |
---|---|
UUID | 00aa9735-89c6-4954-a476-2fe3f83d3e28 |
Fingerprint | d41083112a1362aa |
Analysis status | DONE |
Considered CTI value | -2 |
Text language | |
Published | Nov. 9, 2024, midnight |
Added to db | Nov. 21, 2024, 1:10 p.m. |
Last updated | Dec. 23, 2024, 12:17 p.m. |
Headline | 香港網安奪旗賽HKCERT CTF 2024 Write up(上) |
Title | 香港網安奪旗賽HKCERT CTF 2024 Write up(上) | CTF导航 |
Detected Hints/Tags/Attributes | 47/1/56 |
Source URLs
Redirection | Url | |
---|---|---|
Details | Source | https://www.ctfiot.com/216353.html |
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 426 | ✔ | CTF导航 | https://www.ctfiot.com/feed | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 38 | subprocess.run |
|
Details | Domain | 1 | c52a-webpage-to-pdf-1-t519-r36jghu3qed6ru6azopujzln.hkcert24.pwnable.hk |
|
Details | Domain | 114 | requests.post |
|
Details | Domain | 2 | content.read |
|
Details | Domain | 62 | re.search |
|
Details | Domain | 1 | c02a-custom-server-1-1.hkcert24.pwnable.hk |
|
Details | Domain | 1 | c02b-custom-server-2-2.hkcert24.pwnable.hk |
|
Details | Domain | 45 | app.post |
|
Details | Domain | 8 | cdn.jsdelivr.net |
|
Details | Domain | 1 | yaml.org |
|
Details | Domain | 1 | c62-jspyaml-t519-hev2ottoirslajxbb32csyeq.hkcert24.pwnable.hk |
|
Details | Domain | 1 | c25-chimera-t519-pji6ue6qjfb5c45we2ja6z57.hkcert24.pwnable.hk |
|
Details | Domain | 2 | sess.post |
|
Details | Domain | 7 | base64.py |
|
Details | Domain | 4702 | github.com |
|
Details | Domain | 15 | exploit.sh |
|
Details | Domain | 5 | backdoor.sh |
|
Details | File | 5 | app.reg |
|
Details | File | 11 | user.pas |
|
Details | File | 4 | db.dat |
|
Details | File | 250 | flag.txt |
|
Details | File | 4 | 123.html |
|
Details | File | 4 | self.config |
|
Details | File | 2 | 500.html |
|
Details | File | 7 | 404.html |
|
Details | File | 918 | index.html |
|
Details | File | 1 | 000.html |
|
Details | File | 397 | console.log |
|
Details | File | 36 | res.json |
|
Details | File | 12 | cdn.js |
|
Details | File | 1 | pyodide.js |
|
Details | File | 84 | response.json |
|
Details | File | 1 | lime.php |
|
Details | File | 1 | citrus.php |
|
Details | File | 2 | sss.php |
|
Details | File | 18 | s.bin |
|
Details | File | 15 | a.php |
|
Details | File | 1 | 直接覆蓋base64.py |
|
Details | File | 7 | base64.py |
|
Details | File | 11 | kern.log |
|
Details | Github username | 2 | nikn0laty |
|
Details | sha256 | 1 | 744c75c952ef0b49cdf77383a030795ff27ad54f20af8c71e6e9d705e5abfb94 |
|
Details | IPv4 | 1 | 8.134.146.39 |
|
Details | IPv4 | 1576 | 127.0.0.1 |
|
Details | IPv4 | 676 | 0.0.0.0 |
|
Details | IPv4 | 1 | 192.166.246.54 |
|
Details | Url | 1 | https://c52a-webpage-to-pdf-1-t519-r36jghu3qed6ru6azopujzln.hkcert24.pwnable.hk |
|
Details | Url | 1 | http://8.134.146.39:801 |
|
Details | Url | 1 | https://cdn.jsdelivr.net/pyodide/v0.26.2/full/pyodide.js |
|
Details | Url | 1 | http://127.0.0.1:3000/# |
|
Details | Url | 1 | https://c62-jspyaml-t519-hev2ottoirslajxbb32csyeq.hkcert24.pwnable.hk |
|
Details | Url | 1 | https://c25-chimera-t519-pji6ue6qjfb5c45we2ja6z57.hkcert24.pwnable.hk/citrus.php?sss.php |
|
Details | Url | 1 | http://8.134.146.39:8080/citrus.php |
|
Details | Url | 1 | ftp://8.134.146.39:333/a.php |
|
Details | Url | 1 | https://github.com/nikn0laty/exploit-for-searchor-2.4.0 |
|
Details | Url | 1 | https://t.ly/backdoor.sh |