1

(陇剑杯 2021)日志分析系列

 2 years ago
source link: https://charmersix.icu/2022/05/24/rizhifenxi/
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.

这一系列一共有两部分,一部分是日志分析的三个题目,另一部分是简单的日志分析

这题让找源码文件,根据经验,源码一般放在www/wwwroot下边

直接CTRL+F找一下,果然有。

6c1fc74849f34c4fa88aa1c463ebe12b.png
6a162b49eba64f8e95b301d920e42b09.png
843d004995324ac8920d46c29bb00008.png

这不很明显sess_car

从(2)能看出一段反序列化,那么类自然就是SplFileObject

简单日志分析

打开浏览一下

d2daa3d491744701bcf4d3fccfc5fa99.png

发现这么个东西,像极了base64

解码看,懂的都懂

9a562992d88145a0a626046506e9e8e0.png

参数就是user

又见base64

d5ac6159e3784ee9a06591ac9be8ee4d.png

还是base64,好没劲啊

782157cc0e814fa2a6a8efdfd35436ed.png

report

Recommend

About Joyk


Aggregate valuable and interesting links.
Joyk means Joy of geeK