2023 楚慧杯 - misc 部分 wp-CSDN 博客

# esay 取证

# WP

通过 AXIOM 时间线分析发现机密.docx

点击并拖拽以移动

通过 volatility dump 出文件（我电脑中不知为何显示的是？？？）

点击并拖拽以移动

发现有隐写，用空白格解密不出来。故考虑用 snow 隐写点击并拖拽以移动编辑通过 mimikatz 插件得到密码，通过 snow 解密解得 flag

点击并拖拽以移动

# FLAG

1	DASCTF{f891eff370a2cbefec49d2a577b552d3}

# ez_zip

# WP

通过脚本解压压缩包

import zipfile  
import os  
  
def unzip_and_delete_all_in_directory(directory, dest_path):  
    try:  
        for filename in os.listdir(directory):  
            file_path = os.path.join(directory, filename)   
            if zipfile.is_zipfile(file_path):  
                with zipfile.ZipFile(file_path, 'r') as zip_ref:  
                    zip_ref.extractall(dest_path)  
                os.remove(file_path)  
                print(f"{file_path} has been unzipped and deleted successfully.")  
    except Exception as e:  
        print(f"An error occurred: {e}")  
  
for i in range(5000):
	unzip_and_delete_all_in_directory('./', './')

点击并拖拽以移动

解压出 txt 文件

点击并拖拽以移动

将 + 变 0，- 变 1，用二进制转 ascii 字符解密得 flag

点击并拖拽以移动

# FLAG

1	DASCTF{10c58258ccf1e7c631e5911ed6acc4ed}

# gb2312-80

# WP

利用脚本导出图片

import matplotlib.pyplot as plt
import numpy as np

def display_character(dot_matrix, filename):

    plt.imshow(dot_matrix, cmap='Greys', interpolation='nearest')
    plt.axis('off')
    plt.savefig(filename, bbox_inches='tight', pad_inches=0)
    plt.close()

def parse_dot_matrix(cipher_line):

    row_values = [int(val) for val in cipher_line.split(',')]
    
    dot_matrix = [list(bin(row)[2:].zfill(16)) for row in row_values]
    
    dot_matrix = np.array(dot_matrix).astype(int)
    
    return dot_matrix

with open('C:/Users/miaoaixuan/Desktop/cipher.txt', 'r', encoding='utf-8') as file:
    cipher_text = file.read()

cipher_lines = cipher_text.split('\n')[1:] 

num_characters_to_display = 100
for i in range(num_characters_to_display):
    dot_matrix = parse_dot_matrix(cipher_lines[i])
    filename = f'C:/Users/miaoaixuan/Desktop/tpg/character_{i + 1}.png'
    display_character(dot_matrix, filename)

点击并拖拽以移动

将其 ocr 后，hex 值转化为压缩包

点击并拖拽以移动

通过脚本转换 01 点阵，可得压缩包密码

from PIL import Image
import matplotlib.pyplot as plt

def draw(dot_matrix_str):
    i2 = Image.new("RGB", (16, 16))
    _ind = 0
    for h in range(16):
        for w in range(16):
            x = dot_matrix_str[_ind]
            if x == '0':
                i2.putpixel((w, h), (0, 0, 0)) 
            else:
                i2.putpixel((w, h), (255, 255, 255)) 
            _ind += 1
    return i2

filename = r'c:\Users\miaoaixuan\Desktop\hint.txt'  
with open(filename, 'r', encoding='utf-8') as file:
    dot_matrix_data = [line for line in file.read().split('\n') if len(line) == 256]

for i in range(len(dot_matrix_data)):
    dot_matrix_str = dot_matrix_data[i]
    img = draw(dot_matrix_str)

    plt.imshow(img)
    plt.axis('off')
    plt.show()

    img.save(f"c:/Users/miaoaixuan/Desktop/HINT/character_{i + 1}.png")

点击并拖拽以移动

# FLAG

DASCTF

2023CTF

# esay 取证

# WP

# FLAG

# ez_zip

# WP

# FLAG

# gb2312-80

# WP

# FLAG

ISCTF2023新生赛-misc

2023第六届安洵杯-misc