Skip to content

Instantly share code, notes, and snippets.

@FelipeBarrosCruz

FelipeBarrosCruz/ctf-basic.md

Created November 24, 2017 20:21
Show Gist options
  • Save FelipeBarrosCruz/3a4dae47f2ccce95db0a1e2a993d128d to your computer and use it in GitHub Desktop.
Save FelipeBarrosCruz/3a4dae47f2ccce95db0a1e2a993d128d to your computer and use it in GitHub Desktop.
Download ZIP
Raw
ctf-basic.md

curl -L http://goo.gl/Zu98AA

  <html>
    <head>
      <title>
        CTF Nível básico
      </title>
      <meta charset="utf-8">
    </head>
    <body>
      <h1>
        Muito bem
      </h1>
    </body>
    <script>
      //muito bem! Não se gaba não! isso foi o aquecimento!
      //a url é essa aqui: eu gosto de banana https://akjaos8ada8osdasdkaslkmashdajsp1i0918y73yh5u.000webhostapp.com/fase-2.php
      window.location.href = "https://www.xvideos.com/video31725021/dragon_ball_super_cap_116_sub_espanol";
    </script>
  </html>

curl -L https://akjaos8ada8osdasdkaslkmashdajsp1i0918y73yh5u.000webhostapp.com/fase-2.php

<!doctype html>
<html lang="en">
  <head>
    <title>Hello, world!</title>
    <!-- Required meta tags -->
    <meta charset="utf-8">
    <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">

    <!-- Bootstrap CSS -->
    <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0-beta.2/css/bootstrap.min.css" integrity="sha384-PsH8R72JQ3SOdhVi3uxftmaW6Vc51MKb0q5P2rRUpPvrszuE4W1povHYgTpBfshb" crossorigin="anonymous">
  </head>
  <body>
    <div class="container my-4">
      <div class="row">
        <div class="col-md-12 col-xs-12 col-lg-12">
          <h1>Boa, mas você não é tão bom assim não! Ainda precisa melhorar muito.</h1>
          <p>Acabou aqui pra você!</p>
    <input type="password" class="form-control my-2 " id="senha" placeholder="senha">
    <button class="btn btn-danger btn-block">entrar</button>
        </div>
      </div>
    </div>

    <!-- Optional JavaScript -->
    <!-- jQuery first, then Popper.js, then Bootstrap JS -->
  <script src="jquery-3.2.1.min.js"></script>

    <script src="https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.3/umd/popper.min.js" integrity="sha384-vFJXuSJphROIrBnz7yo7oB41mKfc8JzQZiCq4NCceLEaO4IHwicKwpJf9c9IpFgh" crossorigin="anonymous"></script>

    <script src="https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0-beta.2/js/bootstrap.min.js" integrity="sha384-alpBpkh1PFOepccYVYDB4do5UnbKysX5WZXm3XxPqe5iKTfUKjNkCk9SaVuEZflJ" crossorigin="anonymous"></script>
  <div style='text-align: right;position: fixed;z-index:9999999;bottom: 0; width: 100%;cursor: pointer;line-height: 0;'><a title="Hosted on free web hosting 000webhost.com. Host your own website for FREE." target="_blank" href="https://www.000webhost.com/?utm_source=000webhostapp&amp;utm_campaign=000_logo&amp;utm_medium=website_akjaos8ada8osdasdkaslkmashdajsp1i0918y73yh5u&amp;utm_content=footer_img"><img src="https://cdn.rawgit.com/000webhost/logo/e9bd13f7/footer-powered-by-000webhost-white2.png"  alt="www.000webhost.com"></a></div></body>
  
  <script>
    $("button").on("click", function(){
      var senha = $("#senha").val();
      $.ajax({
        url: "ver-senha.php",
        method: "POST",
        data: {senha: senha}
      }).done( function( status ){
          status = JSON.parse( status );
          if (status.status) {
            $("h1").text("Parece que você não é tão babaca como eu pensei... seguinte... vou deixar até aqui pra ver como o pessoal reage... me manda um email para eu te avisar quando sair o terceiro desafio.");
            $("p").text( status.email );
          } else{
            $("h1").text("Desiste véio.. C não é de nada... vai estudar mais que é!");
            $("p").text( "vaazza babacão!" );
          }
      } );
    });
  </script>
</html>

curl -X POST -F 'senha=eu gosto de banana' https://akjaos8ada8osdasdkaslkmashdajsp1i0918y73yh5u.000webhostapp.com/ver-senha.php

{"status":true,"email":"[email protected]"}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment