목록전체 글 (7)
ash3r & dmawhwhd

Web 1. Calc. from flask import Flask, render_template, render_template_string, request import re app = Flask (__name__) @app.route('/') def calc(): expression = request.args.get('expression') filters = ["'","\"","_","[","]",",","`","sys","os","flag","%","class","config","self","\\"] request.args = None try: for filter in filters: if filter in expression: raise Exception("filterd") result = rende..

Misc - query-master #!/usr/bin/python3 import random import string import subprocess def randName(): return ''.join([random.choice(string.hexdigits) for i in range(16)]) dbpath = f'/tmp/{randName()}.db' query = input("Query >> ") ban = ['.', 'lo', ';'] for x in ban: if x in query: print("Filtered..") exit() proc = subprocess.Popen(["sqlite3", dbpath, query], stdout=subprocess.PIPE) (out, err) = ..
Profile 👨💻 Seungjun Kim (ash3r & dmawhwhd) Nationality : South Korea Birth : 2004 Affiliation 🎓 Education sunrin internet high school 서울여자대학교 정보보호영재교육원 CTF Team Super Guesser Awards 🏆 2022 1st, 사이버 가디언즈 경진대회 2022 1st, The Hacking Championship Junior 2022 1st, JBU CTF 2022 3rd, codegate 2022 2022 3rd, 사이버공격방어대회 2022 1st, 모의 해킹 방어대회(교내) 2022 1st, Wacon 2022 2nd, YISF CTF 2021 1st, 고등해커 페스티벌(교내) 2..