第一題—MISC-BUUCTF-另外一個(gè)世界

注意：得到的 flag 請(qǐng)包上 flag{} 提交

【1】下載附件并解壓，得到monster.jpg

【2】分析這張圖片：
（1）binwalk

這應(yīng)該是一張純正的JPG圖片
（2）將圖片放到winhex中：
直接查找文本flag，沒(méi)有找到什么

但是看到最后有一串01

01101011011011110110010101101011011010100011001101110011
一共56個(gè)數(shù)字：

如果八位為一組轉(zhuǎn)變成ASCII：
網(wǎng)站：https://www.qqxiuzi.cn/bianma/ascii.htm

嘗試flag{koekj3s}
居然正確了

另外一個(gè)世界-題目總結(jié)

仔細(xì)看winhex，發(fā)現(xiàn)結(jié)尾有01，就嘗試ASCII

第二題—MISC-BUUCTF- FLAG

感謝 牌森 同學(xué)提供題目~

注意：請(qǐng)將 hctf 替換為 flag 提交，格式 flag{}

【1】下載附件，是一張圖片：

【2】圖片分析：
（1）binwalk

發(fā)現(xiàn)有zlib,偏移量是0x29,然后用腳本解壓，發(fā)現(xiàn)不成功：

（2）winhex

(3)stegaolve
用Data Extract

發(fā)現(xiàn)ZIP的文件頭
save Bin—保存為1.zip
如果winRAR直接打開(kāi)：

嘗試用修復(fù)軟件修復(fù)：（修復(fù)軟件如果沒(méi)有的話(huà)，我在這篇博客最后提供給大家）

修復(fù)后的ZIP文件：

解壓：


將修復(fù)后的文件改為1.txt，然后記事本查看：

得到的flag就是：hctf{dd0gf4c3tok3yb0ard4g41n~~~}
將hctf換成flag

flag{dd0gf4c3tok3yb0ard4g41n~~~}

flag正確

FLAG-解題總結(jié)

【1】下載文件，使用stegsolve打開(kāi)，然后Data Extract ，然后存為ZIP文件（一定要熟悉ZIP的文件頭，ZIP Archive (zip)，文件頭：504B0304），然后解壓（不能成功解壓的用修復(fù)軟件修復(fù)）。

【2】常見(jiàn)文件頭補(bǔ)充：
JPEG (jpg)，文件頭：FFD8FFE1
PNG (png)，文件頭：89504E47
GIF (gif)，文件頭：47494638
TIFF (tif)，文件頭：49492A00
Windows Bitmap (bmp)，文件頭：424DC001
CAD (dwg)，文件頭：41433130
Adobe Photoshop (psd)，文件頭：38425053
Rich Text Format (rtf)，文件頭：7B5C727466
XML (xml)，文件頭：3C3F786D6C
HTML (html)，文件頭：68746D6C3E
Email [thorough only] (eml)，文件頭：44656C69766572792D646174653A
Outlook Express (dbx)，文件頭：CFAD12FEC5FD746F
Outlook (pst)，文件頭：2142444E
MS Word/Excel (xls.or.doc)，文件頭：D0CF11E0
MS Access (mdb)，文件頭：5374616E64617264204A
WordPerfect (wpd)，文件頭：FF575043
Adobe Acrobat (pdf)，文件頭：255044462D312E
Quicken (qdf)，文件頭：AC9EBD8F
Windows Password (pwl)，文件頭：E3828596
ZIP Archive (zip)，文件頭：504B0304
RAR Archive (rar)，文件頭：52617221
Wave (wav)，文件頭：57415645
AVI (avi)，文件頭：41564920
Real Audio (ram)，文件頭：2E7261FD
Real Media (rm)，文件頭：2E524D46
MPEG (mpg)，文件頭：000001BA
MPEG (mpg)，文件頭：000001B3
Quicktime (mov)，文件頭：6D6F6F76
Windows Media (asf)，文件頭：3026B2758E66CF11
MIDI (mid)，文件頭：4D546864

【3】修復(fù)軟件：（百度網(wǎng)盤(pán)鏈接）
鏈接: https://pan.baidu.com/s/1Lo5ZVKxF6JhqVFkYe_A_Gg 提取碼: 67du
–來(lái)自百度網(wǎng)盤(pán)超級(jí)會(huì)員v4的分享

第三題—MISC-BUUCTF-假如給我三天光明

注意：得到的 flag 請(qǐng)包上 flag{} 提交

【1】下載附件并解壓：


但是music.zip無(wú)法打開(kāi)：

【2】先簡(jiǎn)單分析music.zip：

原來(lái)是一個(gè)RAR文件，將后綴改成RAR，可以成功打開(kāi)：

但是打開(kāi)這個(gè)music.wav需要密碼：

密碼估計(jì)是從圖片中尋找

感覺(jué)就是和下方的這幾張小圖有關(guān)，但是沒(méi)什么思路，后來(lái)百度知道，原來(lái)是跟盲文有關(guān)：

對(duì)照著上面的表，得到 kmdonowg
將kmdonowg作為密碼,能打開(kāi)music.wav，聽(tīng)上去像電報(bào)。

用庫(kù)樂(lè)隊(duì)打開(kāi)：

轉(zhuǎn)換為摩斯密碼（長(zhǎng)的是- 短的是. 空格記為 空格）
就是:

-.-. - …-. .-- .–. . … ----- —… --… …-- …— …–… …— …-- -… --…
在線(xiàn)解密：
https://www.ip138.com/mosi/

猜測(cè)flag{CTFWPEI08732?23DZ}
顯示錯(cuò)誤。
如果嘗試小寫(xiě)：
flag{ctfwpei08732?23dz}
又不對(duì)
猜測(cè)是flag{wpei08732?23dz}
成功：

假如給我三天光明-做題總結(jié)

【1】得到的文件（ZIP）經(jīng)過(guò)binwalk發(fā)現(xiàn)是RAR，改后綴
【2】然后發(fā)現(xiàn)打開(kāi)music.wav需要密碼，估計(jì)是從圖片中來(lái)的，居然是盲文（做題要結(jié)合情景靈活變通）
【3】解出盲文，打開(kāi)wav，猜測(cè)是電報(bào)類(lèi)型的密碼，看波形轉(zhuǎn)為摩絲密碼，在線(xiàn)解密，最后得到flag也要靈活變通的嘗試

第四題—MISC-BUUCTF-神秘龍卷風(fēng)

神秘龍卷風(fēng)轉(zhuǎn)轉(zhuǎn)轉(zhuǎn)，科學(xué)家用四位數(shù)字為它命名，但是發(fā)現(xiàn)解密后居然是一串外星人代碼！！好可怕！ 注意：得到的 flag 請(qǐng)包上 flag{} 提交

【1】下載附件ZIP，并解壓：

神秘龍卷風(fēng).rar再解壓，發(fā)現(xiàn)需要輸入密碼：

【2】ARCHPR暴力解壓：
根據(jù)題目信息“科學(xué)家用四位數(shù)字為它命名”，嘗試解壓：

暴力破解得到：

密碼是：5463
里面有一個(gè)txt文件：

內(nèi)容如下：
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
+++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++
+++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++
+++++++++++++++++++++++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++
++++++.>++++++++++++++++++++++
++++++++++++++++++++++++++
++++++++++++++++++++++++
++++++++++++++++++++++
+++++++++.>+++++++++
++++++++++++++++++
++++++++++++++++++
++++++++++++++++++
++++++++++++++++++
++++++++++++++++++++
++++++++++++++++++++++.>
+++++++++++++++++++++++++++
+++++++++++++++++++++++++++++++
+++++++++++++++++++++++++++++++++++++
++++++.>++++++++++++++++++++++++++++++++++
++++++++++++++++++.>+++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++++++++++++++++++
+++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
+++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
+++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>
+++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++.>

毫無(wú)頭緒，后來(lái)百度才知道：
這是brainfuck代碼，使用在線(xiàn)執(zhí)行網(wǎng)站運(yùn)行即可得到flag
網(wǎng)站：http://bf.doleczek.pl/

flag{e4bbef8bdf9743f8bf5b727a9f6332a8}

神秘龍卷風(fēng)–題目總結(jié)

【1】下載附件，提示四位數(shù)暴力破解解壓密碼
【2】破解后看到一堆+++++++.>++++，需要有積累，是Brainfuck，在線(xiàn)運(yùn)行得到結(jié)果，網(wǎng)站是：http://bf.doleczek.pl/

總結(jié)

以上是生活随笔為你收集整理的20220216-MISC-BUUCTF-另外一个世界-winhex,ASCII转换-FLAG- ZIP文件提取并修复-假如给我三天光明-ZIP改RAR，摩丝电码波形转换-神秘龙卷风brainfuck的全部?jī)?nèi)容，希望文章能夠幫你解決所遇到的問(wèn)題。

如果覺(jué)得生活随笔網(wǎng)站內(nèi)容還不錯(cuò)，歡迎將生活随笔推薦給好友。