{"id":6556,"date":"2022-03-28T16:28:37","date_gmt":"2022-03-28T08:28:37","guid":{"rendered":"https:\/\/www.wangonc.com\/?p=6556"},"modified":"2024-03-01T16:09:37","modified_gmt":"2024-03-01T08:09:37","slug":"some-topics-of-the-13th-information-security-competition-wp","status":"publish","type":"post","link":"https:\/\/www.wangonc.com\/index.php\/2022\/03\/28\/some-topics-of-the-13th-information-security-competition-wp\/","title":{"rendered":"\u7b2c\u5341\u4e09\u5c4a\u4fe1\u5b89\u5927\u8d5b\u90e8\u5206\u9898\u76eeWP"},"content":{"rendered":"<h1>MISC<\/h1>\n<h2>the_best_ctf_game<\/h2>\n<p>\u9898\u76ee\u94fe\u63a5\uff1a<a href=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/the_best_ctf_game.zip\">the_best_ctf_game.zip<\/a><\/p>\n<p>\u6839\u636e\u8fd9\u9053\u9898\u7ed9\u51fa\u7684\u6587\u4ef6\u67e5\u770b\u517616\u8fdb\u5236\u5373\u53ef\u5f97\u5230flag\u3002<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_2Q3JH9W64W8P632.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_2Q3JH9W64W8P632.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><\/p>\n<h2>\u7535\u8111\u88ab\u9ed1<\/h2>\n<p>\u9898\u76ee\u94fe\u63a5\uff1a<a href=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/\u7535\u8111\u88ab\u9ed1.zip\">\u7535\u8111\u88ab\u9ed1.zip<\/a><\/p>\n<p>\u4ece\u8fd9\u9053\u63d0\u7ed9\u51fa\u7684\u6587\u4ef6\u4e2d\u53ef\u4ee5\u770b\u51fa\uff0c\u5b58\u5728\u4e00\u4e2aflag.txt\u6587\u4ef6\uff0c\u4f46\u662f\u88ab\u5220\u9664\u4e86\uff0c\u4e14\u5728trashinfo\u53ef\u4ee5\u770b\u5230\u5220\u9664\u4e4b\u524d\u5728misc01\u76ee\u5f55\u4e0b<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_3HBWTXD3YVM6QFQ.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_3HBWTXD3YVM6QFQ.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><\/p>\n<p>\u6240\u4ee5\u4f7f\u7528\u5de5\u5177\u6062\u590d\u5373\u53ef\u3002\u4f46\u662f\u6839\u636e\u9898\u76ee\uff0c\u8fd9\u4e2a\u5e94\u8be5\u662f\u4e00\u4e2alinux\u7684\u78c1\u76d8dump\u6587\u4ef6\uff0c\u6240\u4ee5\u5148\u6302\u8f7d\u5230\u865a\u62df\u673a\u4e2d\u67e5\u770b\u672c\u8eab\u5b58\u5728\u54ea\u4e9b\u6587\u4ef6\uff0c\u6302\u8f7d\u540e\u6709\u4e09\u4e2a\u6587\u4ef6\uff0c\u4e00\u4e2a\u662f\u63d0\u793aflag\u88ab\u5220\u6389\u7684\u56fe\u7247\uff0c\u4e00\u4e2a\u662f\u5047flag\u6587\u4ef6\uff0c\u8fd8\u6709\u4e00\u4e2ademo\u6587\u4ef6\uff0c\u4f7f\u7528extundelete\u5de5\u5177\u6062\u590d\u540e\u53ef\u4ee5\u5f97\u5230\u88ab\u5220\u9664\u7684flag.txt\u3002\u4e0d\u8fc7\u8be5\u6587\u4ef6\u5185\u5bb9\u5e94\u8be5\u662f\u88ab\u52a0\u5bc6\u8fc7\u7684\uff0c\u548cdemo\u6709\u5173\uff0c\u5206\u6790demo\uff0c\u5176\u4e2d\u6838\u5fc3\u903b\u8f91\u6bd4\u8f83\u7b80\u5355\u5c31\u662f\u4ece\u6587\u4ef6\u4e2d\u8bfb\u53d6\u5b57\u7b26\uff0c\u7136\u540e\u8fdb\u884c\u5f02\u6216\u548c\u52a0\u64cd\u4f5c\uff0c\u5176\u4e2dv4\u548cv5\u7684\u521d\u503c\u662f34\u548c0\uff0c\u6587\u4ef6\u4e2d\u8981\u6c42\u6253\u5f00\u4e00\u4e2a\u540d\u4e3adeom\u7684\u6587\u672c\uff0c\u4f46\u8be5\u6587\u672c\u4e0d\u5b58\u5728\uff0c\u6240\u4ee5\u6839\u636eflag.txt\u4e2d\u768416\u8fdb\u5236\u9006\u51fa\u7b97\u6cd5\u5373\u53ef\u3002<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_ZAQTRVYAJRXA24H.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_ZAQTRVYAJRXA24H.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><\/p>\n<p>\u4e0b\u9762\u4e3apython\u7f16\u5199\u7684\u89e3\u5bc6\u811a\u672c<\/p>\n<pre><code class=\"language-python\">flag=[0x44,0x2A,0x03,0xE5,0x29,0xA3,0xAF,0x62,0x05,0x31,0x4E,0xF3,0xD6,0xEB,0x90,0x66,0x24,0x5C,0xB7,0x92,0xF6,0xD7,0x4D,0x0B,0x6A,0x41,0xA3,0x85,0xEF,0x90,0x5A,0x7E,0x5B,0xEC,0xC1,0xF0,0xD4,0x61,0x12,0x12,0x45,0xEB,0xB8]\n\nans=[]\n\nv4=34\n\nv5=0\n\nfor i in flag:\n\n    ans.append((int(v4%0x100)^i)-v5)\n\n    v4+=34\n\n    v5=(v5+2)&amp;0xf\n\nprint(ans)\n\nfor i in ans:\n\n    print(chr(i),end=&#039;&#039;)<\/code><\/pre>\n<h1>RE<\/h1>\n<h2>z3<\/h2>\n<p>\u9898\u76ee\u94fe\u63a5\uff1a<a href=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/z3.zip\">z3.zip<\/a><\/p>\n<p>\u5206\u6790\u7a0b\u5e8f\u540e\u53ef\u4ee5\u770b\u5230\u6709\u5927\u91cf\u7684\u591a\u9879\u5f0f\u8fd0\u7b97\uff0c\u4e14\u6839\u636e\u9898\u76ee\u540d\u79f0\u63d0\u793a\uff0c\u4f7f\u7528z3\u7f16\u5199\u811a\u672c\u8ba1\u7b97\u51fa\u89e3\u5373\u53ef\u5f97\u5230flag\u3002<\/p>\n<pre><code class=\"language-python\">from z3 import *\n\ns = Solver()\n\ninput = [Int(&#039;input[%d]&#039;%i) for i in range(42)]\n\ns.add(0x4F17 == 34 * input[3] + 12 * input[0] + 53 * input[1] + 6 * input[2] + 58 * input[4] + 36 * input[5] + input[6],\n\n        0x9CF6 == 27 * input[4] + 73 * input[3] + 12 * input[2] + 83 * input[0] + 85 * input[1] + 96 * input[5] + 52 * input[6],\n\n        0x8DDB == 24 * input[2] + 78 * input[0] + 53 * input[1] + 36 * input[3] + 86 * input[4] + 25 * input[5] + 46 * input[6],\n\n        0x8EA6 == 78 * input[1] + 39 * input[0] + 52 * input[2] + 9 * input[3] + 62 * input[4] + 37 * input[5] + 84 * input[6],\n\n        0x6929 == 48 * input[4] + 14 * input[2] + 23 * input[0] + 6 * input[1] + 74 * input[3] + 12 * input[5] + 83 * input[6],\n\n        0x9911 == 15 * input[5] + 48 * input[4] + 92 * input[2] + 85 * input[1] + 27 * input[0] + 42 * input[3] + 72 * input[6],\n\n        0x40A2 == 26 * input[5] + 67 * input[3] + 6 * input[1] + 4 * input[0] + 3 * input[2] + 68 * input[6],\n\n        0x2F3E == 34 * input[10] + 12 * input[7] + 53 * input[8] + 6 * input[9] + 58 * input[11] + 36 * input[12] + input[13],\n\n        0x62B6 == 27 * input[11] + 73 * input[10] + 12 * input[9] + 83 * input[7] + 85 * input[8] + 96 * input[12] + 52 * input[13],\n\n        0x4B82 == 24 * input[9] + 78 * input[7] + 53 * input[8] + 36 * input[10] + 86 * input[11] + 25 * input[12] + 46 * input[13],\n\n        0x486C == 78 * input[8] + 39 * input[7] + 52 * input[9] + 9 * input[10] + 62 * input[11] + 37 * input[12] + 84 * input[13],\n\n        0x4002 == 48 * input[11] + 14 * input[9] + 23 * input[7] + 6 * input[8] + 74 * input[10] + 12 * input[12] + 83 * input[13],\n\n        0x52D7 == 15 * input[12] + 48 * input[11] + 92 * input[9] + 85 * input[8] + 27 * input[7] + 42 * input[10] + 72 * input[13],\n\n        0x2DEF == 26 * input[12] + 67 * input[10] + 6 * input[8] + 4 * input[7] + 3 * input[9] + 68 * input[13],\n\n        0x28DC == 34 * input[17] + 12 * input[14] + 53 * input[15] + 6 * input[16] + 58 * input[18] + 36 * input[19] + input[20],\n\n        0x640D == 27 * input[18] + 73 * input[17] + 12 * input[16] + 83 * input[14] + 85 * input[15] + 96 * input[19] + 52 * input[20],\n\n        0x528F == 24 * input[16] + 78 * input[14] + 53 * input[15] + 36 * input[17] + 86 * input[18] + 25 * input[19] + 46 * input[20],\n\n        0x613B == 78 * input[15] + 39 * input[14] + 52 * input[16] + 9 * input[17] + 62 * input[18] + 37 * input[19] + 84 * input[20],\n\n        0x4781 == 48 * input[18] + 14 * input[16] + 23 * input[14] + 6 * input[15] + 74 * input[17] + 12 * input[19] + 83 * input[20],\n\n        0x6B17 == 15 * input[19] + 48 * input[18] + 92 * input[16] + 85 * input[15] + 27 * input[14] + 42 * input[17] + 72 * input[20],\n\n        0x3237 == 26 * input[19] + 67 * input[17] + 6 * input[15] + 4 * input[14] + 3 * input[16] + 68 * input[20],\n\n        0x2A93 == 34 * input[24] + 12 * input[21] + 53 * input[22] + 6 * input[23] + 58 * input[25] + 36 * input[26] + input[27],\n\n        0x615F == 27 * input[25] + 73 * input[24] + 12 * input[23] + 83 * input[21] + 85 * input[22] + 96 * input[26] + 52 * input[27],\n\n        0x50BE == 24 * input[23] + 78 * input[21] + 53 * input[22] + 36 * input[24] + 86 * input[25] + 25 * input[26] + 46 * input[27],\n\n        0x598E == 78 * input[22] + 39 * input[21] + 52 * input[23] + 9 * input[24] + 62 * input[25] + 37 * input[26] + 84 * input[27],\n\n        0x4656 == 48 * input[25] + 14 * input[23] + 23 * input[21] + 6 * input[22] + 74 * input[24] + 12 * input[26] + 83 * input[27],\n\n        0x5B31 == 15 * input[26] + 48 * input[25] + 92 * input[23] + 85 * input[22] + 27 * input[21] + 42 * input[24] + 72 * input[27],\n\n        0x313A == 26 * input[26] + 67 * input[24] + 6 * input[22] + 4 * input[21] + 3 * input[23] + 68 * input[27],\n\n        0x3010 == 34 * input[31] + 12 * input[28] + 53 * input[29] + 6 * input[30] + 58 * input[32] + 36 * input[33] + input[34],\n\n        0x67FE == 27 * input[32] + 73 * input[31] + 12 * input[30] + 83 * input[28] + 85 * input[29] + 96 * input[33] + 52 * input[34],\n\n        0x4D5F == 24 * input[30] + 78 * input[28] + 53 * input[29] + 36 * input[31] + 86 * input[32] + 25 * input[33] + 46 * input[34],\n\n        0x58DB == 78 * input[29] + 39 * input[28] + 52 * input[30] + 9 * input[31] + 62 * input[32] + 37 * input[33] + 84 * input[34],\n\n        0x3799 == 48 * input[32] + 14 * input[30] + 23 * input[28] + 6 * input[29] + 74 * input[31] + 12 * input[33] + 83 * input[34],\n\n        0x60A0 == 15 * input[33] + 48 * input[32] + 92 * input[30] + 85 * input[29] + 27 * input[28] + 42 * input[31] + 72 * input[34],\n\n        0x2750 == 26 * input[33] + 67 * input[31] + 6 * input[29] + 4 * input[28] + 3 * input[30] + 68 * input[34],\n\n        0x3759 == 34 * input[38] + 12 * input[35] + 53 * input[36] + 6 * input[37] + 58 * input[39] + 36 * input[40] + input[41],\n\n        0x8953 == 27 * input[39] + 73 * input[38] + 12 * input[37] + 83 * input[35] + 85 * input[36] + 96 * input[40] + 52 * input[41],\n\n        0x7122 == 24 * input[37] + 78 * input[35] + 53 * input[36] + 36 * input[38] + 86 * input[39] + 25 * input[40] + 46 * input[41],\n\n        0x81F9 == 78 * input[36] + 39 * input[35] + 52 * input[37] + 9 * input[38] + 62 * input[39] + 37 * input[40] + 84 * input[41],\n\n        0x5524 == 48 * input[39] + 14 * input[37] + 23 * input[35] + 6 * input[36] + 74 * input[38] + 12 * input[40] + 83 * input[41],\n\n        0x8971 == 15 * input[40] + 48 * input[39] + 92 * input[37] + 85 * input[36] + 27 * input[35] + 42 * input[38] + 72 * input[41],\n\n        0x3A1D == 26 * input[40] + 67 * input[38] + 6 * input[36] + 4 * input[35] + 3 * input[37] + 68 * input[41])\n\ns.check()\n\nfor i in range(42):\n\n    print(chr(s.model()[input[i]].as_long()),end=&#039;&#039;)<\/code><\/pre>\n<h2>hyperthreading<\/h2>\n<p>\u9898\u76ee\u94fe\u63a5\uff1a<a href=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/hyperthreading.zip\">hyperthreading.zip<\/a><\/p>\n<p>\u8fd9\u9053\u9898\u4ee3\u7801\u6bd4\u8f83\u7b80\u5355\uff0c\u521b\u5efa\u4e86\u4e09\u4e2a\u7ebf\u7a0b\uff0c\u6267\u884c\u4e86\u8fde\u4e2a\u51fd\u6570\uff0c\u5176\u4e2d\u4e00\u4e2a\u7ebf\u7a0b\u6267\u884c\u7684\u51fd\u6570\u662f\u4e00\u4e2a\u7b80\u5355\u7684\u53cd\u8c03\u8bd5\uff0c\u5176\u5904\u7406\u65b9\u6cd5\u662f\u628a\u5176\u6700\u540e\u6267\u884c\u7684exit\u51fd\u6570nop\u6389\u6216\u8005\u628a<code>test ax,ax<\/code>\u6539\u4e3a<code>xor ax,ax<\/code>\uff0c\u8ba9\u5176\u51fd\u6570\u8fd4\u56de\u503c\u6052\u4e3a0\u5373\u53ef\u3002<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_5T9YDXN3YAFRVY8.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_5T9YDXN3YAFRVY8.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><\/p>\n<p>\u5904\u7406\u8fc7\u53cd\u8c03\u8bd5\u540e\uff0c\u89c2\u5bdf\u53e6\u4e00\u4e2a\u7ebf\u7a0b\u51fd\u6570\uff0c\u8fd9\u4e2a\u51fd\u6570\u4e2d\u5b58\u5728\u4e00\u5b9a\u7684\u5e72\u6270\uff0c\u6709\u6df7\u6dc6\u548c\u5f02\u5e38\uff0c\u5355\u6b65\u8c03\u8bd5\u4f1a\u8d70\u5230\u6709\u4e00\u6b65\u5b58\u5728\u7a7a\u5730\u5740\uff0c\u76f4\u63a5\u6267\u884c\u4f1a\u5d29\u6389\uff0c\u6240\u4ee5\u8fd9\u91cc\u627e\u5230\u5b58\u653e\u8f93\u5165\u5b57\u7b26\u4e32\u7684\u5730\u5740\uff0c\u5728\u5b58\u653e\u8f93\u5165flag\u7684\u5185\u5b58\u5904\u52a0\u4e00\u4e2a\u5185\u5b58\u65ad\u70b9\uff0c\u8ba9\u7a0b\u5e8f\u6267\u884c\uff0c\u6839\u636e\u65ad\u70b9\u7a0b\u5e8f\u505c\u5230\u4e86\u771f\u6b63\u7684\u4e3b\u8981\u903b\u8f91\u90e8\u5206\uff0c\u5176\u5206\u6790\u5982\u4e0b<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_QUG7C7HS3TQNHWD.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_QUG7C7HS3TQNHWD.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><\/p>\n<p>\u56e0\u4e3a\u7b97\u6cd5\u6d89\u53ca\u5230\u79fb\u4f4d\uff0c\u4e0d\u80fd\u9006\u7b97\u6cd5\uff0c\u4f46\u662f\u7531\u4e8e\u662f\u5355\u8868\u52a0\u5bc6\uff0c\u6240\u4ee5\u7206\u7834\u8d77\u6765\u4e5f\u6bd4\u8f83\u7b80\u5355\uff0c\u4e0b\u9762\u662f\u89e3\u5bc6\u811a\u672c,\u8fd0\u884c\u540e\u6839\u636eflag\u683c\u5f0f\u52a0\u4e0a{}\u5373\u53ef\u3002<\/p>\n<pre><code class=\"language-python\">a=qwertyuiopasdfghjklzxcvbnm-1234567890QWERTYUIOPASDFGHJKLZXCVBNM\n\nb=[]\n\nflag=[0xDD,0x5B,0x9E,0x1D,0x20,0x9E,0x90,0x91,0x90,0x90,0x91,0x92,0xDE,0x8B,0x11,0xD1,0x1E,0x9E,0x8B,0x51,0x11,0x50,0x51,0x8B,0x9E,0x5D,0x5D,0x11,0x8B,0x90,0x12,0x91,0x50,0x12,0xD2,0x91,0x92,0x1E,0x9E,0x90,0xD2,0x9F]\n\nfor i in a:\n\n    tmp=((((ord(i)&gt;&gt;2)^(ord(i)&lt;&lt;6))^0x23)+0x23)%256\n\n    b.append(tmp)\n\nprint(b)\n\nfor i in flag:\n\n    for j in range(len(b)):\n\n        if i==b[j]:\n\n            print(a[j],end=&#039;&#039;)\n\n            break<\/code><\/pre>\n<h2>list<\/h2>\n<p>\u9898\u76ee\u94fe\u63a5\uff1a<a href=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/list.zip\">list.zip<\/a><\/p>\n<p>\u628a\u7a0b\u5e8f\u653e\u8fdbidapro\u4e2d\u5206\u6790\uff0c\u7a0b\u5e8f\u7ed3\u6784\u76f8\u5bf9\u6bd4\u8f83\u590d\u6742\uff0c\u4f46\u5176\u5b9e\u903b\u8f91\u8fd8\u662f\u6bd4\u8f83\u7b80\u5355\u7684\u3002\u52a8\u6001\u8c03\u8bd5\u540e\u4f55\u4ee5\u627e\u5230\u4e3b\u8981\u903b\u8f91\u6240\u5728\u7684\u51fd\u6570\uff0c\u5176\u4e3b\u8981\u5728\u56fe\u4e2d\u6240\u793a\u7684\u51fd\u6570\u4e2d\u3002<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_F9J46E7SFERWAPR.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_F9J46E7SFERWAPR.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\" \/><\/div><\/p>\n<p>\u8fdb\u5165\u51fd\u6570\u540e\uff0c\u5728\u8fd9\u91cc\u53ef\u4ee5\u770b\u51faflag\u957f\u5ea6\u7684\u8981\u6c42\uff0c\u662f38\u4f4d\uff0c\u4e0d\u662f\u5219\u4f1a\u76f4\u63a5\u8df3\u8fc7flag\u5904\u7406\u90e8\u5206<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_8WDD8VZG6DT2G9Z.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_8WDD8VZG6DT2G9Z.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><\/p>\n<p>\u63a5\u7740\u5f80\u4e0b\u5206\u6790\uff0c\u53ef\u4ee5\u770b\u5230\u6267\u884c\u4e86malloc\u51fd\u6570\u5f00\u8f9f\u4e86\u4e00\u5757\u5185\u5b58\u7a7a\u95f4\uff0c\u7136\u540e\u628a\u5730\u5740\u7ed9\u4e86ax\uff0c\u518d\u8d4b\u7ed9dx<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_2H6S3DWWEC6D76H.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_2H6S3DWWEC6D76H.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><\/p>\n<p>\u7136\u540e\u5bf9\u8f93\u5165\u5b57\u7b26\u4e32\u8fdb\u884c\u904d\u5386\uff0c\u5e76\u8bb2\u7ed3\u679c\u5b58\u653e\u5728\u5206\u914d\u597d\u7684\u5185\u5b58dx\u4e2d<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_QJ4KW9BJYWUJPHW.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_QJ4KW9BJYWUJPHW.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><\/p>\n<p>\u63a5\u7740\u5f80\u4e0b\u5206\u6790\uff0c\u4e0b\u9762\u7684\u5206\u6790\u5982\u56fe<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_2XTC7UH94VBWQ5G.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_2XTC7UH94VBWQ5G.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"\/\" \/><\/div><\/p>\n<p>\u5728\u904d\u5386\u4e86\u8f93\u5165\u5b57\u7b26\u4e32\u540e\uff0c\u4e0e\u5185\u5b58\u4e2d\u7ed9\u5b9a\u7684\u6570\u636e\u8fdb\u884c\u5f02\u6216\uff0c\u7136\u540e\u628a\u5f02\u6216\u8fd0\u7b97\u7684\u7ed3\u679c\u5b58\u5165\u4e0a\u9762dx\u7684\u4e0b\u4e00\u4f4d\uff0c\u4e5f\u5c31\u662f\u8f93\u5165\u5b57\u7b26\u4e32\u7684\u540e\u9762\uff0c\u7136\u540e\u628a\u4e0a\u4e00\u6b21\u8fd0\u7b97\u7684\u5730\u5740\u5728dx\u540e\u504f\u79fb4\u4f4d\u5b58\u5165\uff0c\u518d\u628a\u4e0a\u9762\u5206\u914d\u989d\u5730\u5740dx\u653e\u5165\u5230\u53d8\u91cfvar30\u4e2d\uff0c\u8fdb\u884c\u4e0b\u4e00\u6b21\u904d\u5386\uff0c\u6240\u4ee5\u4e0a\u9762\u53d8\u91cfvar30\u4e2d\u8d4b\u7ed9ax\u7684\u5730\u5740\u5c31\u662f\u4e0a\u4e00\u6b21\u904d\u5386\u5206\u914d\u7684\u5185\u5b58\u5730\u5740\uff0c\u5373\u4e0a\u4e00\u6b21\u7684\u5b58\u50a8\u5730\u5740\uff0c\u6700\u540e\u628a\u8fd9\u4e00\u6b21\u7684\u5730\u5740\u8d4b\u7ed9\u4e0a\u9762\u5907\u4efd\u7684var30\uff08\u4e0a\u4e00\u6b21\u7684\u5730\u5740\uff09\u540e\u504f\u79fb8\u4f4d\uff0c\u4e5f\u5c31\u662f\u8bf4\u6574\u4e2a\u518d\u5185\u5b58\u4e2d\u5b58\u50a8\u989d\u662f\u4e00\u4e2a\u53cc\u5411\u94fe\u8868\u7ed3\u6784\uff0c\u9996\u5148\u5b58\u50a8\u8f93\u5165\u5b57\u7b26\u4e32\u7684\u5176\u4e2d\u4e00\u4f4d\uff0c\u4e0b\u4e00\u4f4d\u662f\u5f02\u6216\u8fd0\u7b97\u540e\u7684\u5b57\u7b26\u4e32\uff0c\u63a5\u7740\u5b58\u50a8\u4e0a\u4e00\u4e2a\u6a21\u5757\u7684\u5730\u5740\u548c\u4e0b\u4e00\u4e2a\u6a21\u5757\u7684\u5730\u5740\u3002<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_D579PTA2U7N6FR7.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_D579PTA2U7N6FR7.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><\/p>\n<p>\u622a\u6b62\u5230\u8fd9\u91cc\u7a0b\u5e8f\u7684\u8fd0\u7b97\u903b\u8f91\u5c31\u7ed3\u675f\u4e86\uff0c\u6240\u4ee5\u53ea\u8981\u628a\u5185\u5b58\u4e2d\u8fd0\u7b97\u540e\u7684flag\u6570\u636e\u548c\u4e0a\u9762\u7528\u6765\u5f02\u6216\u7684\u6570\u636e\u8fd0\u7b97\u5373\u53ef\u7684\u5230flag\u3002\u89e3\u5bc6\u811a\u672c\u5982\u4e0b<\/p>\n<pre><code class=\"language-python\">a=[0x68,0x27,0x21,0x21,0x70,0x64,0x61,0x32,0x64,0x34,0x7D,0x72,0x73,0x73,0x73,0x51,0x51,0x0A,0x5,0x7,0x40,0x46,0x46,0x46,0x19,0x77,0x25,0x25,0x74,0xFA,0xEB,0x16,0x53,0x2E,0x23,0x52,0x4e,0x77]\n\nb=[0x11,0x22,0x33,0x44,0x55,0x66,0x77,0x88,0x99,0x12,0x13,0x14,0x15,0x21,0x22,0x23,0x24,0x25,0x31,0x32,0x33,0x34,0x35,0x41,0x42,0x43,0x44,0x45,0x51,0x52,0x53,0x54,0x55,0x12,0x13,0x11,0x14,0x15]\n\nj=37\n\nfor i in range(38):\n\n    print(chr(a[j]^b[i]),end=&#039;&#039;)\n\n    j-=1<\/code><\/pre>\n<pre><code>&lt;pre class=&quot;wp-block-preformatted&quot;&gt;&lt;br&gt;&lt;\/br&gt;<\/code><\/pre>\n<h2>easyre1<\/h2>\n<p>\u9898\u76ee\u94fe\u63a5\uff1a<a href=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/easyre1.zip\">easyre1.zip<\/a><\/p>\n<p>\u628a\u9898\u76ee\u653e\u8fdbida\u4e2d\u5206\u6790\uff0c\u901a\u8fc7\u5b57\u7b26\u4e32\u53ef\u4ee5\u76f4\u63a5\u627e\u5230\u4e3b\u8981\u903b\u8f91\u6240\u5728\u7684\u4f4d\u7f6e\uff0c\u5728\u8f93\u5165\u4e86\u5b57\u7b26\u4e32\u540e\uff0c\u7a0b\u5e8f\u5bf9\u6bd4\u4e86\u8f93\u5165\u5b57\u7b26\u4e32\u7684\u957f\u5ea6\uff0c\u8981\u6c42\u5176\u957f\u5ea6\u4e3a32\u4f4d\uff0c\u5426\u5219\u76f4\u63a5\u8f93\u51fa\u9519\u8bef\u3002<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_YW9GREN7KC7U5Q7.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_YW9GREN7KC7U5Q7.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><\/p>\n<p>\u4e0b\u9762\u7a0b\u5e8f\u8c03\u7528\u4e86\u4e00\u4e2a\u540d\u4e3afirst\u7684\u51fd\u6570\uff0c\u5176\u662f\u4e00\u4e2a\u6807\u51c6\u7684b64\uff0c\u7136\u540e\u7a0b\u5e8fcrypt\u51fd\u6570\uff0c\u6709\u56db\u4e2a\u53c2\u6570\uff0c\u8fd9\u56db\u4e2a\u53c2\u6570\u5206\u522b\u662f\u8f93\u5165\u5b57\u7b26\u4e32\u7684b64\u548c\u5176\u957f\u5ea6\uff0c\u7a0b\u5e8f\u7ed9\u7684\u5b57\u7b26\u4e32\u548c\u5176\u957f\u5ea6<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_3YB7SV2P226EJ85.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_3YB7SV2P226EJ85.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><br \/>\n\u8fdb\u5165\u8fd9\u4e2acrypt\u51fd\u6570\u8fdb\u884c\u5206\u6790\u540e\uff0c\u53ef\u4ee5\u53d1\u73b0\u8fd9\u4e2a\u51fd\u6570\u5bf9\u7ed9\u5b9a\u7684\u5b57\u7b26\u4e32\u8fdb\u884c\u4e86\u4e00\u4e9b\u52a0\u5bc6\u64cd\u4f5c\uff0c\u7136\u540e\u628a\u52a0\u5bc6\u7684\u7ed3\u679c\u4e0e\u8f93\u5165\u5b57\u7b26\u4e32\u7684b64\u8fdb\u884c\u5f02\u6216\uff0c\u5f02\u6216\u7684\u7ed3\u679c\u624d\u662f\u540e\u9762\u8fc7\u7a0b\u7528\u5230\u7684\u6570\u636e\uff0c\u6240\u4ee5\u4e0d\u5fc5\u5173\u6ce8\u52a0\u5bc6\u7684\u8fc7\u7a0b\uff0c\u76f4\u63a5\u5728\u4e0b\u9762\u83b7\u53d6\u52a0\u5bc6\u7684\u7ed3\u679c\u5373\u53ef\uff0c\u6240\u4ee5\u5176\u5b9e\u8fd9\u4e2a\u51fd\u6570\u662f\u4e00\u4e2aRC4\u52a0\u5bc6\uff0c\u5bc6\u94a5\u5c31\u662f\u5185\u5b58\u4e2d\u7684\u5b57\u7b26\u4e32\u3002<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_NESU89NQB94UDAU.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_NESU89NQB94UDAU.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><\/p>\n<p>RC4\u52a0\u5bc6\u7684\u91cd\u70b9\u5c31\u662f\u5bc6\u94a5\u6d41\u751f\u6210\uff0c\u51fd\u6570\u4e2d\u8c03\u7528\u4e86\u4e00\u4e2a\u540d\u4e3ainit\u7684\u51fd\u6570\uff0c\u8d77\u4f5c\u7528\u5c31\u662f\u751f\u6210\u5bc6\u94a5\u6d41<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_YNFMSD34SWN3Y2Z.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_YNFMSD34SWN3Y2Z.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><\/p>\n<p>\u8fd9\u4e2a\u5bc6\u94a5\u6d41\u5728\u6700\u540e\u7684\u5f02\u6216\u8fc7\u7a0b\u4e2d\u5c31\u53ef\u4ee5\u770b\u5230\uff0c\u8bb0\u4e0b\u6765\u5373\u53ef\u3002 \u5728\u540e\u9762\u7684\u8fc7\u7a0b\u4e2d\uff0c\u5bf9\u4e0a\u9762\u52a0\u5bc6\u540e\u7684\u7ed3\u679c8\u4f4d\u4e00\u7ec4\u8fdb\u884c\u987a\u5e8f\u8c03\u8f6c\u540e\u5b58\u5165Dest\u4e2d<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_XKF2XREC477NYAZ.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_XKF2XREC477NYAZ.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><\/p>\n<p>\u5176\u4e2dLOBYTE\u8fd9\u4e9b\u90fd\u662fIDA\u7684\u5b8f\u5b9a\u4e49\uff0c\u5176\u5c31\u5148\u5f53\u4e0e\u662f\u628a\u4e00\u4e2aBYTE\u5206\u6210\u56db\u90e8\u5206\uff0c\u8fd9\u91cc\u7684\u7ed3\u679c\u5c31\u662f\u628a\u6570\u636e\u987a\u5e8f\u8c03\u8f6c\uff0c\u7136\u540e\u628a\u8fd9\u4e2a\u6570\u636e\u4e0e0x90604956\u8fdb\u884c\u5f02\u6216\uff0c\u8fd9\u4e2a\u6570\u636e\u662f\u56fa\u5b9a\u7684<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_B2ENTMEEWTT6HTP.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_B2ENTMEEWTT6HTP.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><\/p>\n<p>\u7136\u540e\u5bf9\u5f02\u6216\u540e\u5c0f\u4e8e0\u7684\u7ed3\u679c\u4e0e22222222h\u8fdb\u884c\u5f02\u6216<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_5DQS44X5PTSM9PX.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_5DQS44X5PTSM9PX.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><\/p>\n<p>\u7136\u540e\u4e0e\u6b63\u786e\u7684\u7ed3\u679c\u8fdb\u884c\u5bf9\u6bd4\uff0c\u5176\u4e0e\u4e0a\u9762\u7684\u5f02\u6216\u8fc7\u7a0b\u662f\u76f8\u540c\u7684\uff0c\u6240\u4ee5\u4e5f\u662f\u6bcf8\u4f4d\u8fdb\u884c\u6bd4\u8f83\u3002<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_T8CJ6JGXSSDNBEA.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_T8CJ6JGXSSDNBEA.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\" \/><\/div><\/p>\n<p>\u6240\u4ee5\u5728\u8fd9\u91cc\u53ef\u4ee5\u76f4\u63a5\u83b7\u53d6\u5230\u6b63\u786e\u7684\u7ed3\u679c\u3002 \u5230\u8fd9\u91cc\u6574\u4e2a\u8fc7\u7a0b\u5c31\u5206\u6790\u5b8c\u4e86\uff0c\u6240\u4ee5\u6574\u4e2a\u8fc7\u7a0b\u76f8\u5f53\u4e8e\u8fdb\u884c\u4e86\u4e09\u6b21\u5f02\u6216\uff0c\u6240\u4ee5\u89e3\u5bc6\u76f4\u63a5\u5f02\u6216\u56de\u53bb\u5373\u53ef\uff08\u5176\u4e2d\u4e00\u6b21\u662fRC4\u7684\u5f02\u6216\uff09\u3002\u89e3\u5bc6\u811a\u672c\u5982\u4e0b<\/p>\n<pre><code class=\"language-python\">a=[0x00000000FCA8D10B,0x0000000043225D2C, 0x000000003DDA00BA, 0x000000007E8B2802, 0x0000000061C189F7, 0x00000000E4EAAF07, 0x00000000800FE27F, 0x00000000D6C3594F, 0x000000005653F16A, 0x0000000022EE3F49, 0x00000000B13760C5]\n\nb=[0x7,0xf5,0xb0,0x4,0x2,0x5,0x14,0x9d,0x97,0x01,0xd5,0xbe,0x38,0x29,0x9b,0xa1,0xcc,0xa6,0xef,0xa9,0x0b,0x8c,0xdb,0x45,0x70,0xc1,0x26,0x20,0x7b, 0x22,0xe5,0x2c,0x53,0xce,0x5b,0x8f,0x64,0x3e,0xc4,0xfc,0xca,0x1a,0x67,0x1c]\n\nflag=&#039;&#039;\n\nfor i in range(len(a)):\n\n    #a[i]=a[i]^0x22222222^0x90604956\n\n    a[i]=a[i]^0x90604956\n\n    #print(hex(a[i]))\n\nfor i in a:\n\n    tmp=hex(i)\n\n    if(len(tmp)!=10):\n\n        tmp=tmp[:2]+&#039;0&#039;+tmp[2:]\n\n    for j in range(8,0,-2):\n\n        flag+=(tmp[j:j+2])\n\n        #print(tmp[j:j+2])\n\nj=0\n\nfor i in range(0,len(flag)+1,2):\n\n    print(chr(int(flag[i:i+2],16)^b[j]),end=&#039;&#039;)\n\n    j+=1\n\n    if(j%4==0):\n\n        print(&#039; &#039;,end=&#039;&#039;)<\/code><\/pre>\n<p>\u56e0\u4e3a\u4e0a\u9762\u7684\u8fc7\u7a0b\u4e2d\u5bf9\u5c0f\u4e8e0\u7684\u7ed3\u679c\u8fdb\u884c\u4e86\u4e00\u6b21\u5f02\u6216\uff0c\u4f46\u662f\u6211\u4eec\u5e76\u4e0d\u77e5\u9053\u5f02\u6216\u5176\u662f\u5426\u662f\u5c0f\u4e8e0\uff0c\u6240\u4ee5\u8fd9\u91cc\u9700\u8981\u4e00\u4e0b\u7206\u7834\uff0c\u5373\u9700\u8981\u6267\u884c\u4e24\u4e2a\u7248\u672c\u7684\u811a\u672c\uff0c\u53e6\u4e00\u4e2a\u7248\u672c\u5c31\u662f\u5728\u811a\u672c\u4e2d\u6ce8\u91ca\u4e2d\u7684\u7248\u672c\uff0c\u5bf9\u6bd4\u4e24\u4e2a\u7248\u672c\u7684\u7ed3\u679c\uff0c\u56e0\u4e3a\u5df2\u77e5\u5176\u7ed3\u679c\u662f\u4e00\u4e2ab64\uff0c\u6240\u4ee5\u53ef\u4ee5\u6392\u9664\u6389\u4e00\u4e9b\u4e0d\u548c\u89c4\u5219\u7684\u7ed3\u679c<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_9AUK927D9HEU8HF.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_9AUK927D9HEU8HF.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><\/p>\n<p>\u5728\u5269\u4f59\u7684\u7ed3\u679c\u4e2d\uff0c\u53ea\u6709\u4e00\u4e2a\u7ec4\u5408\u662f\u7b26\u5408\u7684\uff0c\u4e00\u7ec4\u4e00\u7ec4\u5c1d\u8bd5\u540e\u53ef\u4ee5\u5f97\u5230\u4e00\u4e2a\u6700\u7ec8\u7684b64\u7ed3\u679c<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_A9BNHU4G6MAY8GG.png'><img class=\"lazyload lazyload-style-3\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/www.wangonc.com\/wp-content\/uploads\/2022\/01\/93_A9BNHU4G6MAY8GG.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"file\/\" \/><\/div><\/p>\n<p>\u8fdb\u884c\u89e3\u7801\u5373\u53ef\u5f97\u5230\u6700\u7ec8\u7684flag\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u7b2c\u5341\u4e09\u5c4a\u4fe1\u5b89\u5927\u8d5b\u521d\u8d5bwp\uff0c\u4e3b\u8981\u5305\u542bmisc\u548cre\u4e24\u90e8\u5206\u7684\u90e8\u5206\u9898\u76ee<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[44],"tags":[54,56],"series":[],"class_list":["post-6556","post","type-post","status-publish","format-standard","hentry","category-reverse-engineering","tag-ctf","tag-wp"],"_links":{"self":[{"href":"https:\/\/www.wangonc.com\/index.php\/wp-json\/wp\/v2\/posts\/6556","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.wangonc.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.wangonc.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.wangonc.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.wangonc.com\/index.php\/wp-json\/wp\/v2\/comments?post=6556"}],"version-history":[{"count":5,"href":"https:\/\/www.wangonc.com\/index.php\/wp-json\/wp\/v2\/posts\/6556\/revisions"}],"predecessor-version":[{"id":7404,"href":"https:\/\/www.wangonc.com\/index.php\/wp-json\/wp\/v2\/posts\/6556\/revisions\/7404"}],"wp:attachment":[{"href":"https:\/\/www.wangonc.com\/index.php\/wp-json\/wp\/v2\/media?parent=6556"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.wangonc.com\/index.php\/wp-json\/wp\/v2\/categories?post=6556"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.wangonc.com\/index.php\/wp-json\/wp\/v2\/tags?post=6556"},{"taxonomy":"series","embeddable":true,"href":"https:\/\/www.wangonc.com\/index.php\/wp-json\/wp\/v2\/series?post=6556"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}