Yêu CTF

CTF chưa bao giờ khiến tôi mệt mỏi...

[OverTheWire] Natas – Level 13

13/09/2013

http://natas13.natas.labs.overthewire.org/

For security reasons, we now only accept image files!
Choose a JPEG to upload (max 1KB)

Task này giống hệt bài 12, chỉ khác là có thêm bước kiểm tra định dạng file sau khi upload:

[php]if(filesize($_FILES[‘uploadedfile’][‘tmp_name’]) > 1000) {
echo “File is too big”;
} else if (! exif_imagetype($_FILES[‘uploadedfile’][‘tmp_name’])) {
echo “File is not an image”;
} else {
if(move_uploaded_file($_FILES[‘uploadedfile’][‘tmp_name’], $target_path)) {
echo “The file $target_path has been uploaded”;
} else{
echo “There was an error uploading the file, please try again!”;
}
}[/php]

Lưu ý rằng exif_imagetype là một hàm có sẵn của PHP, nó kiểm tra một vài byte đầu tiên của file để xác định xem file đó có phải file ảnh hay không. Ta có thể bypass dễ dàng phép kiểm tra này bằng cách chèn nội dung 1 file ảnh vào trước đoạn code php của file 12.php của bài trước, và đổi tên nó thành 13.php emo_popo_big_smile

Thực hiện các bước tương tự như bài 12, kết quả là ta thu được flag nằm sau các byte loạn xạ của file hình:

...¹]j™)â14•j. J›å¿Úi&ûÙmuª[èÿÙ natas14:Lg96M10TdfaPyVBkJdjymbllQ5L6qdl1

→ flag = Lg96M10TdfaPyVBkJdjymbllQ5L6qdl1.

You may also like...

35 Responses

  1. Donaldloary says:
    09/05/2024 at 09:40

    Междугородние перевозки Санкт-Петербург – Междугородние перевозки Оренбург, Такси межгород Йошкар-Ола

    Reply
  2. Henrykeymn says:
    27/10/2024 at 07:31

    узнать больше Здесь https://bs2best.is

    Reply
  3. 攻撃的ボランチ 選手 says:
    18/02/2025 at 08:31

    In some cases, particularly for executive MBA programs, employers will pay for part or all of an employee’s MBA education.

    Reply
  4. Georgelox says:
    19/02/2025 at 13:01

    helpful hints SMS verification in real time

    Reply
  5. エディージョーンズ監督 says:
    21/03/2025 at 15:56

    One service provider got heated and accused the railroad of working its operations poorly until being advised to cease berating by the Chamber of Commerce Chairman.

    Reply
  6. EdwardGrige says:
    26/03/2025 at 05:00

    Exponent Finance is redefining DeFi lending by providing secure, transparent, and high-yield investment solutions. Through smart contract-powered lending pools, Exponent Finance DeFi platform allows users to borrow and lend crypto assets with optimal efficiency and minimal risk. Whether you’re looking to earn passive income through staking or access instant liquidity, Exponent Finance offers a decentralized, non-custodial, and user-friendly solution to meet all your financial goals in the crypto ecosystem. https://exponent.ink

    Reply
  7. WilliamHourl says:
    01/04/2025 at 09:01

    HyperDrive is transforming the way data is stored and managed through decentralized storage and blockchain hosting solutions. Built for security, scalability, and efficiency, HyperDrive enables businesses, developers, and blockchain projects to store and distribute data without relying on centralized servers. By leveraging Web3 technology and distributed networks, HyperDrive ensures reliable, censorship-resistant, and high-performance storage solutions for the digital era. https://hyperdrive.ink

    Reply
  8. Juliusved says:
    02/04/2025 at 13:41

    перейдите на этот сайт https://futbolka-ogbuda.ru

    Reply
  9. Forresthes says:
    12/04/2025 at 22:38

    kraken ссылка – кракен ссылка, кракен войти

    Reply
  10. WillieTeS says:
    13/04/2025 at 11:16

    Continue Reading merrill lynch

    Reply
  11. Ernestler says:
    03/05/2025 at 14:32

    https://www.adobe.com/

    Reply
  12. Waynedem says:
    03/05/2025 at 22:59

    find out here https://agentsland.cc/

    Reply
  13. https://www.harvard.edu/ says:
    04/05/2025 at 04:08

    # Harvard University: A Legacy of Excellence and Innovation

    ## A Brief History of Harvard University

    Founded in 1636, **Harvard University** is the oldest and one of
    the most prestigious higher education institutions in the
    United States. Located in Cambridge, Massachusetts,
    Harvard has built a global reputation for academic excellence, groundbreaking research, and influential
    alumni. From its humble beginnings as a small college established to educate clergy, it has evolved into a world-leading university that shapes the future across various disciplines.

    ## Harvard’s Impact on Education and Research

    Harvard is synonymous with **innovation and intellectual leadership**.
    The university boasts:

    – **12 degree-granting schools**, including the renowned **Harvard Business
    School**, **Harvard Law School**, and **Harvard Medical School**.

    – **A faculty of world-class scholars**, many of whom are Nobel laureates, Pulitzer Prize winners, and pioneers
    in their fields.
    – **Cutting-edge research**, with Harvard leading initiatives in artificial
    intelligence, public health, climate change,
    and more.

    Harvard’s contribution to research is immense, with billions
    of dollars allocated to scientific discoveries and technological
    advancements each year.

    ## Notable Alumni: The Leaders of Today and Tomorrow

    Harvard has produced some of the **most influential figures** in history, spanning politics, business, entertainment, and science.
    Among them are:

    – **Barack Obama & John F. Kennedy** – Former U.S.
    Presidents
    – **Mark Zuckerberg & Bill Gates** – Tech visionaries
    (though Gates did not graduate)
    – **Natalie Portman & Matt Damon** – Hollywood icons
    – **Malala Yousafzai** – Nobel Prize-winning activist

    The university continues to cultivate future leaders who shape
    industries and drive global progress.

    ## Harvard’s Stunning Campus and Iconic Library

    Harvard’s campus is a blend of **historical charm and modern innovation**.
    With over **200 buildings**, it features:

    – The **Harvard Yard**, home to the iconic **John Harvard Statue**
    (and the famous “three lies” legend).
    – The **Widener Library**, one of the largest university libraries in the world, housing **over 20 million volumes**.

    – State-of-the-art research centers, museums, and performing arts venues.

    ## Harvard Traditions and Student Life

    Harvard offers a **rich student experience**,
    blending academics with vibrant traditions,
    including:

    – **Housing system:** Students live in one of 12
    residential houses, fostering a strong sense of community.

    – **Annual Primal Scream:** A unique tradition where students de-stress
    by running through Harvard Yard before finals!
    – **The Harvard-Yale Game:** A historic football rivalry that unites alumni and students.

    With over **450 student organizations**, Harvard students engage in a diverse range of extracurricular activities, from entrepreneurship to performing
    arts.

    ## Harvard’s Global Influence

    Beyond academics, Harvard drives change in **global policy, economics, and technology**.
    The university’s research impacts healthcare, sustainability, and artificial intelligence, with partnerships across industries worldwide.
    **Harvard’s endowment**, the largest of any university, allows it to fund
    scholarships, research, and public initiatives, ensuring a legacy of impact for generations.

    ## Conclusion

    Harvard University is more than just a school—it’s a **symbol of excellence,
    innovation, and leadership**. Its **centuries-old traditions,
    groundbreaking discoveries, and transformative education**
    make it one of the most influential institutions in the world.
    Whether through its distinguished alumni, pioneering
    research, or vibrant student life, Harvard continues to shape the future in profound ways.

    Would you like to join the ranks of Harvard’s legendary scholars?
    The journey starts with a dream—and an application!

    https://www.harvard.edu/

    Reply
  14. BarryKax says:
    10/05/2025 at 07:15

    На КРАКЕН всегда можно найти нужный товар

    Reply
  15. GilbertVeift says:
    19/05/2025 at 09:17

    Навестите текущий сайт https://sag-floorsystems.de/13-000-qm-2/

    Reply
  16. VIB file windows says:
    19/05/2025 at 09:47

    FileViewPro’s strength lies not only in its support
    for VIB files but in its ability to handle hundreds of other formats
    as well. After inspecting a VIB file, users can move on to open related files—such as log reports, patch notes,
    PDF documentation, or CSV data—without
    leaving the application. This unified experience helps streamline complex tasks, especially when you’re working
    across multiple file types as part of a larger system maintenance or migration project.
    Everything can be handled from within one application, eliminating
    the need to install or switch between multiple tools.

    Reply
  17. alexistogel apk says:
    19/05/2025 at 09:48

    I’ve been exploring for a little for any high quality articles or weblog posts on this kind of space
    . Exploring in Yahoo I eventually stumbled upon this site.
    Reading this info So i am happy to exhibit that I have a very good uncanny feeling I came upon just what I needed.
    I such a lot unquestionably will make certain to don?t
    forget this site and provides it a look regularly.

    Reply
  18. Nutzen Sie Krafttraining für Gesundheit und Langlebigkeit im Alter says:
    19/05/2025 at 09:48

    At the end of an agreed period – whether that’s every week,
    every fortnight, or every month – reward yourself.

    Yes this may be very basic, but you’ll be surprised how many people ignore this advice –
    get enough sleep. Making plans to exercise with someone else can be the incentive
    you need to get out of the house and moving, so make
    sure that you rope in some willing exercisers to get you going and ensure that when you leave the house you do not end up en masse
    at the local coffee shop or even the pub.

    Reply
  19. roofing contractors akron oh says:
    19/05/2025 at 11:02

    If you want to increase your familiarity simply keep visiting
    this web page and be updated with the most recent news posted here.

    Reply
  20. Soho303 says:
    19/05/2025 at 21:13

    Login Soho303 : Soho303

    Reply
  21. sex says:
    20/05/2025 at 01:52

    Hello there! Would you mind if I share your blog with my zynga group?
    There’s a lot of folks that I think would really appreciate your content.
    Please let me know. Cheers

    Reply
  22. unblocked games 76 says:
    20/05/2025 at 02:06

    Today, while I was at work, my cousin stole my iphone and tested to see if it can survive a thirty foot drop,
    just so she can be a youtube sensation. My apple ipad is now broken and she has 83 views.
    I know this is entirely off topic but I had to share it with someone!

    Reply
  23. Source URL says:
    20/05/2025 at 02:51

    Thanks a bunch for sharing this with all people you really
    recognise what you’re talking approximately! Bookmarked.
    Kindly also talk over with my web site =). We could have a hyperlink trade contract between us

    Reply
  24. anak haram tetangga says:
    20/05/2025 at 03:43

    Great beat ! I would like to apprentice while you amend your site, how can i subscribe for
    a blog website? The account helped me a acceptable deal.
    I had been a little bit acquainted of this your broadcast offered bright clear idea

    Reply
  25. hayati777 daftar says:
    20/05/2025 at 04:23

    An outstanding share! I have just forwarded this onto a friend who
    has been conducting a little homework on this.

    And he actually bought me lunch due to the fact that I found it for him…

    lol. So let me reword this…. Thank YOU for the meal!!

    But yeah, thanks for spending the time to talk about this topic here
    on your blog.

    Reply
  26. VepicSmope says:
    20/05/2025 at 05:02

    На сайте https://svaib.ru/ уточните расценки на КЖБИ сваи. Это предприятие предлагает качественную и надежную установку практичных, прочных свай КЖБИ. Все работы выполняются без минимальных деформаций, разрушений, спилов, чтобы вы смогли получить безупречный, эталонный результат. Сваи имеют такую важную особенность, что разрабатываются из виброуплотненного бетона, а также прочного армокаркаса. Именно по этой причине сваи будут намного прочнее бетона. На этом же сайте ознакомьтесь с благодарственными письмами от тех компаний, которые уже воспользовались услугами предприятия.

    Reply
  27. Tabitlopicy says:
    20/05/2025 at 05:03

    На сайте https://villaprestige.ru уточните расписание, когда вы сможете снять виллу «Престиж». Для того чтобы забронировать этот вариант, необходимо обозначить дату заезда и выезда, количество гостей. Уточните и расписание электричек, на которых вы сможете добраться до места. Этот отдых обязательно вдохновит вас на нечто большее. Сделать правильный выбор помогут фотографии этого завораживающего места. Вас ожидает бесплатный Интернет, лаунж-зона, бесплатная парковка. К каждому клиенту индивидуальный подход.

    Reply
  28. Cerunhfum says:
    20/05/2025 at 05:03

    На сайте https://shemi-otopleniya.ru/ ознакомьтесь с полным ассортиментом товаров, которые выполнены из качественной нержавеющей стали. В ассортименте компании находится гибкая подводка, РВД, подводка для смесителя и многое другое различных размеров, модификации и конфигурации. Именно поэтому вы обязательно приобретете то, что нужно для выполнения определенных работ, ремонта. В разделе можно ознакомиться и с особенностями, техническими характеристиками трехходового крана, медных труб. Вся продукция является сертифицированной, высокого качества.

    Reply
  29. คาสิโนออนไลน์ says:
    20/05/2025 at 05:05

    คาสิโนออนไลน์ ต้องยกให้ E2Bet คาสิโนออนไลน์
    เว็บไซต์เดิมพันระดับท็อปของเอเชีย เชื่อถือได้ มั่นคง ปลอดภัย เพิ่มประสบการณ์การเล่นที่เหนือกว่าใครต้อง E2Bet คาสิโนออนไลน์ เท่านั้น!
    สมัครเลยตอนนี้ รับสิทธิพิเศษมากมาย

    Reply
  30. affordable search engine optimization company columbus says:
    20/05/2025 at 06:24

    Hey there! Do you know if they make any plugins to assist with Search Engine Optimization? I’m trying to get my blog to rank for some targeted keywords but I’m
    not seeing very good gains. If you know of any please share.
    Appreciate it!

    Reply
  31. GRATIS VIAGRA says:
    20/05/2025 at 07:28

    Men who take Viagra/sildenafil whilst they’re intoxicated danger not solely increased negative effects, but
    in addition enhance their probabilities of catching sexually transmitted diseases,
    by means of a scarcity of caution (see beware membership drugs and Viagra).
    Did you know just one third of males with
    erectile dysfunction search treatment? One necessary side to remember
    is that Viagra solely works in response to sexual stimulation –
    in other words, it’s essential to be aroused for the treatment to trigger an erection. The product
    label doesn’t embrace dosing information for girls because it’s not intended for this
    use. Read on as we discover Viagra use in girls,
    whether or not it’s safe, and out there options.
    In research which have included ladies, it seems to be pretty properly-tolerated.
    That can be a problem if you have already got low blood
    strain or take medicines that lower blood pressure.
    Side effects of Vyleesi include momentary enhance in blood stress and lower in heart charge.

    Reply
  32. pink salt trick for weight loss says:
    20/05/2025 at 08:31

    Why users still use to read news papers when in this technological globe everything is available on net?

    Reply
  33. more says:
    20/05/2025 at 08:36

    I read this article fully about the resemblance of hottest and previous technologies, it’s awesome article.

    Reply
  34. LeonardHab says:
    23/05/2025 at 21:06

    10 фактов о фильме “Кинг-Конг”
    https://x.com/kiselev_igr/status/1925908871370911795

    Reply
  35. Danielelach says:
    26/05/2025 at 18:33

    Дочь Киркорова вступилась за себя и раскрыла неизвестные факты о детях Пугачёвой https://x.com/MKids3447/status/1926958247157612733

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *