#1.二维码#

之所以写这个，是因为之前做题看见二维码，就用手机直接扫，直接被学长狠狠的拷打了，所以之后我就改掉这个习惯用了QR。

但是，在二维码这上面，还是有很多知识是我不知道的，这边点名批评京华杯签到题，不会ps，压根不会做。

今天这个笔记，主要是记录一个新的题目，CTFSHOW菜狗杯的迅疾响应，这一题给我整傻了，还是看了wp才懂。

这道题的附件是一张二维码，扫不出来，虽然有隐藏文件，那只是调侃flag不在这。

这边要引入一个新的工具 ，叫QRazyBox。

二维码编辑器，你看它就能扫出来信息。

*QR version : *9 (53x53)

*Error correction level : *L

*Mask pattern : *2

*Number of missing bytes (erasures) : *0 bytes (0.00%)

Data blocks :

[“01001110”,“11000110”,“01010100”,“11100110”,“00110110”,“01010111”,“00010111”,“00100110”,“00000111”,“00010110”,“01000111”,“00100110”,“01010111”,“11000110”,“00100110”,“01010010”,“01010010”,“00000111”,“00000111”,“00000111”,“01000110”,“00100110”,“10000110”,“11110110”,“01010010”,“01110111”,“00000100”,“00100110”,“01100110”,“00010110”,“11000110”,“11010111”,“00010110”,“00110010”,“01110010”,“00000110”,“00000010”,“11110111”,“10000100”,“00100010”,“00110101”,“00000111”,“01000100”,“01110110”,“01100010”,“01010110”,“10010010”,“00100111”,“00000110”,“00110110”,“10010110”,“10010111”,“11100010”,“01000110”,“00000110”,“01010111”,“00110110”,“00110010”,“11110110”,“11100010”,“11010111”,“00000110”,“00000111”,“00110111”,“01010111”,“01000110”,“01000110”,“01100111”,“01010111”,“00110110”,“00100010”,“10000110”,“00000111”,“11110111”,“00110110”,“01110111”,“01010110”,“10110011”,“00110111”,“00010011”,“01010111”,“00010011”,“00100110”,“01000011”,“10010111”,“01010011”,“01000111”,“00010011”,“10010010”,“01000011”,“00000110”,“00010011”,“10010111”,“10010010”,“00110010”,“11010011”,“00000110”,“00010011”,“00010110”,“10010011”,“11100010”,“10000011”,“00000110”,“00010010”,“01010111”,“11010000”,“10000110”,“10100000”,“01010111”,“11101100”,“00100110”,“00010001”,“00110110”,“11101100”,“10010111”,“00010001”,“00110110”,“11101100”,“01010010”,“00010001”,“00000110”,“11101100”,“10010110”,“00010001”,“11100010”,“11101100”,“00000111”,“00010001”,“01110110”,“11101100”,“10000110”,“00010001”,“10010110”,“11101100”,“00110110”,“00010001”,“10000010”,“11101100”,“00000010”,“00010001”,“00100110”,“11101100”,“01100110”,“00010001”,“11000110”,“11101100”,“00010110”,“00010001”,“01110111”,“11101100”,“00110010”,“00010001”,“00100010”,“11101100”,“00000110”,“00010001”,“00010111”,“11101100”,“00100110”,“00010001”,“01010010”,“11101100”,“00000111”,“00010001”,“00110110”,“11101100”,“01010110”,“00010001”,“00110111”,“11101100”,“00100110”,“00010001”,“01010111”,“11101100”,“01000110”,“00010001”,“11000111”,“11101100”,“10010010”,“00010001”,“00000110”,“11101100”,“10000110”,“00010001”,“10010110”,“11101100”,“01000110”,“00010001”,“01000110”,“11101100”,“01010110”,“00010001”,“11100010”,“11101100”,“00000110”,“00010001”,“10010110”,“11101100”,“11100010”,“00010001”,“00000111”,“11101100”,“00000111”,“00010110”,“01010111”,“11000110”,“00100111”,“00010110”,“00000110”,“11100110”,“11110111”,“01000110”,“00110110”,“01010111”,“01010110”,“10000110”,“01100111”,“10010110”,“01010110”,“00010110”,“11000110”,“11100110”,“11000111”,“01110110”,“10010010”,“11000110”,“11010111”,“01010111”,“01100111”,“11010000”,“01010110”,“11101100”,“00111100”,“10101100”,“00000010”,“00110111”,“11111111”,“11010110”,“00001110”,“00100001”,“11100001”,“00111100”,“11101010”,“01011101”,“01010010”,“01010111”,“01110111”,“10110010”,“01010110”,“10100000”,“10001101”,“00011110”,“11100110”,“11011100”,“01111011”,“11010110”,“11010010”,“00011011”,“11110000”,“10010111”,“01110000”,“01001101”,“11011000”,“11110101”,“01101110”,“01110001”,“11001110”,“01110111”,“10110110”,“10101100”,“11001101”,“01101100”,“10100011”,“01000100”,“00000111”,“10000001”,“11110010”,“10011001”,“01001001”,“00000010”,“10111000”,“00000110”,“01100111”,“01110011”,“10000000”,“01010010”,“01100101”,“10101101”,“01100001”,“01011001”,“11010001”,“00111110”]

Final data bits :

01001010100001000011011000010111000001110100011101010111001001100101001000000111010001101000011001010010000001000110011011000110000101100111001000000010100001000011010101000100011000101001001000000110100101101110001000000110001101101111011011010111000001110101011101000110010101110010001000000111001101100101011000110111010101110010011010010111010001111001001000000110100101110011001000000110000101101110001000000110010101111000011001010111001001100011011010010111001101100101001000000110100101101110001000000111011101101000011010010110001101101000001000000010001001100110011011000110000101100111011100110010001000100000011000010111001001100101001000000111001101100101011000110111001001100101011101000110110001111001001000000110100001101001011001000110010001100101011011100010000001101001011011100010000001110000011101010111001001110000011011110111001101100101011001100111010101101100011011000111100100101101011101100111010101101100011011100110010101110010011000010110001001101100011001010010000001110000011100100110111101100111011100100110000101101101011100110010000001101111011100100010000001110111011001010110001001110011011001000101010001100101011100110010111000100000011000110111010001100110011100110110100001101111011101110111101100110001001100010011010000110101001100010011010000110001001110010010110100110001001110010011100000110001001011010000101000001110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000101101100011000010110111001100100011001010111100001101001011000010110111001100111011011000110010101111101000011101100

[0100] [10101000] [010000110110000101110000011101000111010101110010011001010010000001110100011010000110010100100000010001100110110001100001011001110010000000101000010000110101010001000110001010010010000001101001011011100010000001100011011011110110110101110000011101010111010001100101011100100010000001110011011001010110001101110101011100100110100101110100011110010010000001101001011100110010000001100001011011100010000001100101011110000110010101110010011000110110100101110011011001010010000001101001011011100010000001110111011010000110100101100011011010000010000000100010011001100110110001100001011001110111001100100010001000000110000101110010011001010010000001110011011001010110001101110010011001010111010001101100011110010010000001101000011010010110010001100100011001010110111000100000011010010110111000100000011100000111010101110010011100000110111101110011011001010110011001110101011011000110110001111001001011010111011001110101011011000110111001100101011100100110000101100010011011000110010100100000011100000111001001101111011001110111001001100001011011010111001100100000011011110111001000100000011101110110010101100010011100110110010001010100011001010111001100101110001000000110001101110100011001100111001101101000011011110111011101111011001100010011000100110100001101010011000100110100001100010011100100101101001100010011100100111000001100010010110100001010]

*Mode Indicator : **8-bit Mode (0100)

*Character Count Indicator : *168

Decoded data : Capture the Flag (CTF) in computer security is an exercise in which “flags” are secretly hidden in purposefully-vulnerable programs or websdTes. ctfshow{11451419-1981-

*Final Decoded string : *Capture the Flag (CTF) in computer security is an exercise in which “flags” are secretly hidden in purposefully-vulnerable programs or websdTes. ctfshow{11451419-1981-

这边用这个就能得到一半的flag了，那么另一半呢，我们需要编辑二维码。

这个工具能纠错我们错误的二维码， 我虽然没有按照纠错涂白完，但已经有另一半了。

QR version : 9 (53x53)**

Error correction level **

Mask pattern : 2***

Number of missing bytes (erasures) :0 bytes (0.00%)*

Data blocks :

[“01001110”,“11000110”,“01010100”,“11100110”,“00110110”,“01010111”,“00010111”,“00100110”,“00000111”,“00010110”,“01000111”,“00100110”,“01010111”,“11000110”,“00100110”,“01010010”,“01010010”,“00000111”,“00000111”,“00000111”,“01000110”,“00100110”,“10000110”,“11110110”,“01010010”,“01110111”,“00000100”,“00100110”,“01100110”,“00010110”,“11000110”,“11010111”,“00010110”,“00110010”,“01110010”,“00000110”,“00000010”,“11110111”,“10000100”,“00100010”,“00110101”,“00000111”,“01000100”,“01110110”,“01100010”,“01010110”,“10010010”,“00100111”,“00000110”,“00110110”,“10010110”,“10010111”,“11100010”,“01000110”,“00000110”,“01010111”,“00110110”,“00110010”,“11110110”,“11100010”,“11010111”,“00000110”,“00000111”,“00110111”,“01010111”,“01000110”,“01000110”,“01100111”,“01010111”,“00110110”,“00100010”,“10000110”,“00000111”,“11110111”,“00110110”,“01110111”,“01010110”,“10110011”,“00110111”,“00010011”,“01010111”,“00010011”,“00100110”,“01000011”,“10010111”,“01010011”,“01000111”,“00010011”,“10010010”,“01000011”,“00000110”,“00010011”,“10010111”,“10010010”,“00110010”,“11010011”,“00000110”,“00010011”,“00010110”,“10010011”,“11100010”,“10000011”,“00000110”,“00010010”,“01010111”,“11010000”,“10000110”,“10100000”,“01010111”,“11101100”,“00100110”,“00010001”,“00110110”,“11101100”,“10010111”,“00010001”,“00110110”,“11101100”,“01010010”,“00010001”,“00000110”,“11101100”,“10010110”,“00010001”,“11100010”,“11101100”,“00000111”,“00010001”,“01110110”,“11101100”,“10000110”,“00010001”,“10010110”,“11101100”,“00110110”,“00010001”,“10000010”,“11101100”,“00000010”,“00010001”,“00100110”,“11101100”,“01100110”,“00010001”,“11000110”,“11101100”,“00010110”,“00010001”,“01110111”,“11101100”,“00110010”,“00010001”,“00100010”,“11101100”,“00000110”,“00010001”,“00010111”,“11101100”,“00100110”,“00010001”,“01010010”,“11101100”,“00000111”,“00010001”,“00110110”,“11101100”,“01010110”,“00010001”,“00110111”,“11101100”,“00100110”,“00010001”,“01010111”,“11101100”,“01000110”,“00010001”,“11000111”,“11101100”,“10010010”,“00010001”,“00000110”,“11101100”,“10000110”,“00010001”,“10010110”,“11101100”,“01000110”,“00010001”,“01000110”,“11101100”,“01010110”,“00010001”,“11100010”,“11101100”,“00000110”,“00010001”,“10010110”,“11101100”,“11100010”,“00010001”,“00000111”,“11101100”,“00000111”,“00010110”,“01010111”,“11000110”,“00100111”,“00010110”,“00000110”,“11100110”,“11110111”,“01000110”,“00110110”,“01010111”,“01010110”,“10000110”,“01100111”,“10010110”,“01010110”,“00010110”,“11000110”,“11100110”,“11000111”,“01110110”,“10010010”,“11000110”,“11010111”,“01010111”,“01100111”,“11010000”,“01010110”,“11101100”,“00111100”,“10101100”,“00000010”,“00110111”,“11111111”,“11010110”,“00001110”,“00100001”,“11100001”,“00111100”,“11101010”,“01011101”,“01010010”,“01010111”,“01110111”,“10110010”,“01010110”,“10100000”,“10001101”,“00011110”,“11100110”,“11011100”,“01111011”,“11010110”,“11010010”,“00011011”,“11110000”,“10010111”,“01110000”,“01001101”,“11011000”,“11110101”,“01101110”,“01110001”,“11001110”,“01110111”,“10110000”,“00000000”,“00000000”,“00000000”,“00000000”,“00000000”,“00000000”,“00001010”,“10101010”,“10101010”,“10101010”,“10101010”,“10101010”,“10101010”,“10101010”,“10101001”,“01010101”,“01010101”,“01010101”,“01010101”,“01010101”,“01010101”,“01010101”,“01010101”]

Final data bits :

01001110010101000011011000010111000001110100011101010111001001100101001000000111010001101000011001010010000001000110011011000110000101100111001000000010100001000011010101000100011000101001001000000110100101101110001000000110001101101111011011010111000001110101011101000110010101110010001000000111001101100101011000110111010101110010011010010111010001111001001000000110100101110011001000000110000101101110001000000110010101111000011001010111001001100011011010010111001101100101001000000110100101101110001000000111011101101000011010010110001101101000001000000010001001100110011011000110000101100111011100110010001000100000011000010111001001100101001000000111001101100101011000110111001001100101011101000110110001111001001000000110100001101001011001000110010001100101011011100010000001101001011011100010000001110000011101010111001001110000011011110111001101100101011001100111010101101100011011000111100100101101011101100111010101101100011011100110010101110010011000010110001001101100011001010010000001110000011100100110111101100111011100100110000101101101011100110010000001101111011100100010000001110111011001010110001001110011011010010111010001100101011100110010111000100000011000110111010001100110011100110110100001101111011101110111101100110001001100010011010000110101001100010011010000110001001110010010110100110001001110010011100000110001001011010000101000001110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000101101100011000010110111001100100011001010111100001101001011000010110111001100111011011000110010101111101000011101100

[0100] [11100101] [01000011011000010111000001110100011101010111001001100101001000000111010001101000011001010010000001000110011011000110000101100111001000000010100001000011010101000100011000101001001000000110100101101110001000000110001101101111011011010111000001110101011101000110010101110010001000000111001101100101011000110111010101110010011010010111010001111001001000000110100101110011001000000110000101101110001000000110010101111000011001010111001001100011011010010111001101100101001000000110100101101110001000000111011101101000011010010110001101101000001000000010001001100110011011000110000101100111011100110010001000100000011000010111001001100101001000000111001101100101011000110111001001100101011101000110110001111001001000000110100001101001011001000110010001100101011011100010000001101001011011100010000001110000011101010111001001110000011011110111001101100101011001100111010101101100011011000111100100101101011101100111010101101100011011100110010101110010011000010110001001101100011001010010000001110000011100100110111101100111011100100110000101101101011100110010000001101111011100100010000001110111011001010110001001110011011010010111010001100101011100110010111000100000011000110111010001100110011100110110100001101111011101110111101100110001001100010011010000110101001100010011010000110001001110010010110100110001001110010011100000110001001011010000101000001110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000100011110110000010001111011000001000111101100000101101100011000010110111001100100011001010111100001101001011000010110111001100111011011000110010101111101]***

*Mode Indicator : *8-bit Mode (0100)

*Character Count Indicator : *229

Decoded data : Capture the Flag (CTF) in computer security is an exercise in which “flags” are secretly hidden in purposefullyvulnerable programs or websites. ctfshow{11451419-1981- ÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁlandexiangle}

Final Decoded string the Flag (CTF) in computer security is an exercise in which “flags” are secretly hidden in purposefully-vulnerable programs or websites. ctfshow{11451419-1981- ÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁÁlandexiangle}**

ctfshow{11451419-1981-landexiangle}

是一个很有用的工具，相信以后也会用到的。

#2.Hackber#

Hackber,一个在做web题很好用的工具，传参，post，改cookie啊，等等，有了这个工具，我就不要再傻乎乎的搁那curl这，curl -X那的了，我曾经两次下载它，第一次载入谷歌失败，第二次即便装了也不会用，本以为就此失败，没想到偶然间，竟得到了高人指点，大师，我悟了，话不多说，开始我的故事。

事情的起因是这题，我依稀还记得这是我刚开始接触web做过的题，当时的我是个fw，根本没用头绪，而现在我有头绪了，但还是个fw，也是刚才才做出来的。

打开 题目，显示方式不对，这边就是get方式不行，要改为post。

hackbor工具一招搞定，马上就看到题目源码了，之前还是傻乎乎的curl -X POST 呢，

题目要求一个Cookie: flag=1 然后传参web=like ,最后一个POST CNSS=join

我真是服我自己了，怎么这么简单的题都卡。

吐槽之余也是收获了一个好工具的用法，唉。

版权声明：本文由白白毛毛创作，转载请注明出处。