sf CTF helper

---

#WebShell

• troj.c/l
  • file create:clone server file attribute to troj(modefydate,chmod)
  • immotal troj
  • blur filename
  • hole
• crontab
  • submit flag
    • wget: usr/bin/wget --cookies=on --load-cookies=#file# --keep-session-cookies #url#
    • curl:
  • generate troj
• console self web
  • generate self troj
  • user cmd
  • kill others troj

#SQL

• blind inject

#SSH

• sftp
  • backup/redeploy server
  • deploy any package
  • modefy web package
• cmd exec
• upload&depoly user package

#CodeReview

• use seay rules
  • fit regex type to python
• patch code
• generate attack payload

#Config

• general
  • use json file
  • reload config wehn user modefied
  • runtime setting persisted
• hole
  • fit every teams
    • base on team setting
    • [ ]