Python Web Hacking: PHP Remote Code Execution File Upload | Natas: OverTheWire (Level 13)
HTML-код
- Опубликовано: 21 сен 2024
- If you would like to support me, please like, comment & subscribe, and check me out on Patreon: / johnhammond010
E-mail: johnhammond010@gmail.com
PayPal: paypal.me/johnh...
GitHub: github.com/Joh...
Site: www.johnhammond...
Twitter: / _johnhammond
Nice OverTheWire walkthrough John!, do you have all the python scripts used in this CTF uploaded to somewhere?
Thanks
Thanks for watching! I hadn't put them somewhere before, but it's a very good idea -- here they are now! :D github.com/JohnHammond/overthewire_natas_solutions
thanks bro, keep it up!
Other valid magic bytes can be found here: github.com/php/php-src/blob/master/ext/standard/image.c#L41
I see this resource a lot, too, and I think it's great: www.garykessler.net/library/file_sigs.html?.lu
Thanks for sharing!
Your script isn't actually automated, is it, since you are hard coding the randomly generated file name? It would be nice to see it a little more fleshed out so that it saves the returned path.