Light

xiaotaode2009 / awd-submit-flag Goto Github PK

View Code? Open in Web Editor NEW

This project forked from 0xaww/awd-submit-flag

0.0 1.0 0.0 3.08 MB

该模块主要是用来ctf AWD比赛时批量提交flag时使用的

Python 0.19% PHP 99.31% Hack 0.02% Roff 0.01% CSS 0.35% JavaScript 0.09% Shell 0.03%

awd-submit-flag's Introduction

awd-submit-flag

说明

该模块主要是用来ctf AWD比赛时批量提交flag时使用的

使用方法

配置好config.conf之后，直接python automatic.py即可。

文件调用

文件名	用途
config.conf	配置文件，所有的参数配置
resolve_config.py	解析config
pwn_flag.py	调用pwn攻击获取flag
web_flag.py	通过web访问获取flag
local_flag.py	通过本地文件批量提交flag
target.py	获取所有ip段
submit.py	向平台提交flag（具体要看平台的提交方式）
log.py	生成日志
automatic.py	主要运行文件

config.conf 详解

ip module

start_ip 攻击开始ip
end_ip 攻击结束ip
skip_ip 跳过ip（有些比赛提交自己的flag会扣分）

script_function_module

script_function 脚本功能(web & pwn & local)
|___ local:从本地的flag文件中获取flag提交(用于攻击脚本无法自动化的情况)
|___ web:从本地的url.txt中批量获取url，并访问获取flag
|___ pwn:根据ip与port，利用exp批量攻击获取flag

submit_module

submit_addr 平台提交flag的地址（可以通过curl或urllib来进行提交，看比赛运维平台）
token 队伍token
success_request 判断提交的flag正确与否的字段(根据curl结果来确定)
failed_request 判断提交的flag正确与否的字段(根据curl结果来确定)
round_time 比赛每轮时间，单位秒

local_flag module

flag_file 本地flag文件

web_flag symbol

url_file web攻击url的文件
flag_start 查找web访问response中的flag开头
flag_end 查找web访问response中的flag结尾

pwn_flag module

port 题目端口

备注

友情提醒，使用前最好git pull一下，代码会不定期更新。
当使用web模块时，一定要修改相应的header和data。
当使用pwn模块时，一定要修改相应的exp脚本。

awd-submit-flag's People

Contributors

Watchers

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.