CTF学习之路-攻防世界：MISC，入门篇

桃扇骨 2022-12-24 00:53 294阅读 0赞

### 目录 ###

*   *  一、感谢和安利
     *  二、MISC-新手练习篇Writeup
     *  1、this\_is\_flag
     *  2、pdf
     *  3、如来十三掌
     *  4、give\_you\_flag
     *  5、坚持60S
     *  6、gif
     *  7、掀桌子
     *  8、stegano
     *  9、SimpleRAR(比较麻烦)
     *  10、base64stego
     *  11、ext3
     *  12、功夫再高也怕菜刀

## 一、感谢和安利 ##

我是从攻防世界入门的，感谢攻防世界的免费靶场  
靶场地址：攻防世界  
https://adworld.xctf.org.cn/

## 二、MISC-新手练习篇Writeup ##

## 1、this\_is\_flag ##

![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center]  
WP：  
明显，入门用的，了解flag格式，直接提交题目例子的flag就可以了  
flag\{th1s\_!s\_a\_d4m0\_4la9\}

## 2、pdf ##

![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 1]  
WP：  
题目给的一个PDF文件，使用PDF编辑器打开（我用的是万兴PDF编辑器）  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 2]  
移出来看到就是flag了  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 3]

## 3、如来十三掌 ##

![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70]  
附件是一份文档：  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 1]  
一段经文，那不就是与佛论禅加密？  
http://www.keyfc.net/bbs/tools/tudoucode.aspx  
记得加“佛曰”前缀  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 2]  
得到一串字符：  
MzkuM3gvMUAwnzuvn3cgozMlMTuvqzAenJchMUAeqzWenzEmLJW9  
看着这段字符，百思不得其解，最后题目：“如来十三掌”，十三？？试试rot13解码，得到一串字符串：  
ZmxhZ3tiZHNjamhia3ptbmZyZGhidmNraWpuZHNrdmJramRzYWJ9  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 3]  
最后丢到解密工具里一键解码，得到flag:  
flag\{bdscjhbkzmnfrdhbvckijndskvbkjdsab\}

![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 4]

## 4、give\_you\_flag ##

![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 4]  
WP：附件是个GIF图片，看到闪的飞快，最后有一帧黑乎乎的，那就是可疑的地方了，思路肯定是工具逐帧分解GIF

可以用“GIF动画帧提取器”，或者PS分解出来。  
PS打开：找到可疑图层，打开图层显示，就可以看到可疑的那一帧。  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 5]  
GIF动画帧提取器打开，找到可疑帧  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 6]  
小恐龙手上拿着的是二维码，但是少了三个定位点，要PS回去。  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 7]  
扫描二维码得到flag  
![在这里插入图片描述][20201126105951733.png_pic_center]

## 5、坚持60S ##

![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 5]  
下载下来是一个jar包  
![在这里插入图片描述][20210104112831209.png]  
运行起来是一个游戏，没啥有用的信息

![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 6]  
使用gd-gui工具反编译看看  
查找关键字flag  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 7]  
看到还真能找到  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 8]  
flag\{RGFqaURhbGlfSmlud2FuQ2hpamk=\}  
拿去提交，发现是不对的

flag\{RGFqaURhbGlfSmlud2FuQ2hpamk=\}看着像base64加密，拿去解密。  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 9]  
得到flag  
flag\{DajiDali\_JinwanChiji\}

## 6、gif ##

![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 8]  
下载下来，发现是个压缩包，打开看看，发现都是黑、白两色块。脑袋里啪的想到：白：0 ，黑 ：1，为啥不是白：1，黑：0？？做久了开发就知道，0是白黑是1，1都是反派的那个。  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 9]  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 10]

一番比对后得到一串数字：  
01100110011011000110000101100111011110110100011001110101010011100101111101100111011010010100011001111101

然后发现总数是104个，这要么是2、4、8一组，计算机中以字节为单位存储和解释信息,规定一个字节由八个二进制位构成，那么8个一组没跑了。

8个一组得到：  
01100110 01101100 01100001 01100111 01111011 01000110 01110101 01001110 01011111 01100111 01101001 01000110 01111101

二进制转字符得到flag（用的随波逐流提供的解密工具）：flag\{FuN\_giF\}  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 11]  
\*\*

## 7、掀桌子 ##

\*\*  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 10]  
这题没啥附件，只有一串字符，看字符是0-9，a-f组成的，就知道这是16进制字符串咯，那么2个16进制可以代表一个字符串，就用python进行转换下。

string = "c8e9aca0c6f2e5f3e8c4efe7a1a0d4e8e5a0e6ece1e7a0e9f3baa0e8eafae3f9e4eafae2eae4e3eaebfaebe3f5e7e9f3e4e3e8eaf9eaf3e2e4e6f2"
    for i in range(0,len(string),2):
        s = '0x'+string[i]+string[i+1]
        i = int(s,16)
        print(str(i))

发现结果字符块都大于128，ASCII码范围是0-127  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 11]  
怎么办呢？上面结果再减下128  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 12]  
这就对了。跟着感觉走没毛病，把进制转换成字符。  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 13]

string = "c8e9aca0c6f2e5f3e8c4efe7a1a0d4e8e5a0e6ece1e7a0e9f3baa0e8eafae3f9e4eafae2eae4e3eaebfaebe3f5e7e9f3e4e3e8eaf9eaf3e2e4e6f2"
    flag = ''
    for i in range(0,len(string),2):
        s = '0x'+string[i]+string[i+1]
        i = int(s,16)-128
        flag+=chr(i)
    print(flag)

转换后得到以下结果，可以得到flag咯：  
Hi, FreshDog! The flag is: hjzcydjzbjdcjkzkcugisdchjyjsbdfr

## 8、stegano ##

![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 14]  
下载得到附件  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 15]  
PDF编辑器，删掉挡在前面的那对英文，看到还剩下几个文本框。  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 16]  
复制文本出来，贴在记事本上  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 17]  
很明显，ABAB那串就是密文了。复制出来

BABA  BBB  BA  BBA  ABA  AB  B  AAB  ABAA  AB  B  AA  BBB  BA  AAA  BBAABB  AABA  ABAA  AB  BBA  BBBAAA  ABBBB  BA  AAAB  ABBBB  AAAAA  ABBBB  BAAA  ABAA  AAABB  BB  AAABB  AAAAA  AAAAA  AAAAB  BBA  AAABB

试下转换为摩斯密码，记事本替换下A和B，A替换为 .，B替换为-。  
到如下结果。  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 18]

-.-.  ---  -.  --.  .-.  .-  -  ..-  .-..  .-  -  ..  ---  -.  ...  --..--  ..-.  .-..  .-  --.  ---...  .----  -.  ...-  .----  .....  .----  -...  .-..  ...--  --  ...--  .....  .....  ....-  --.  ...--

放到解密工具上解密  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 19]  
去掉空格，得到一串字符  
CONGRATULATIONS,FLAG:1NV151BL3M3554G3  
题目说flag是小写，转换为小写，得到flag。  
congratulations,flag:1nv151bl3m3554g3  
那么flag就是flag\{1nv151bl3m3554g3\}

## 9、SimpleRAR(比较麻烦) ##

![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 20]  
下载是1个压缩包，360解压  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 21]  
当然是用rar啦，360压缩不会提示错误的，winrar才会。  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 22]  
文件头损坏，那就用winhex打开修复。  
首先了解下rar块头的知识：  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 23]

在这里怎么定位坏的块呢？  
1、定位文件位置  
rar提示secret.png文件头已损坏，winhex先定位到文件所在。  
通过搜索文本，可以定位到文件所在了。  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 24]  
题目用到的是这两个知识点  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 25]  
附上常见的块类型(HEAD\_TYPE)如下：

标记块：HEAD_TYPE=0x72
    压缩文件头：HEAD_TYPE=0x73
    文件头：HEAD_TYPE=0x74
    旧风格的注释头：HEAD_TYPE=0x75
    旧风格的用户身份信息：HEAD_TYPE=0x76
    旧风格的子块：HEAD_TYPE=0x77
    旧风格的恢复记录：HEAD_TYPE=0X78
    旧风格的用户身份信息：HEAD_TYPE=0X79
    子块：HEAD_TYPE=0x7A
    最后的结束块：HEAD_TYPE=0x7B

2、找到块头  
上一个文件结束，是 flag is not here，就是那个迷惑的txt文件内容结尾啦。那么跟着的就是下个文件，图片文件的开头。看下图，从上面知识，知道第三个字节开始，就是文件块头咯，那么我们要改的就是这个字节。提示文件头损坏，那就给他改成对应的 文件头：HEAD\_TYPE=0x74

![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 26]  
改完后保存，如下图  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 27]  
解压压缩包，看到图片出来了。  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 28]  
打开图片，发现空白的，所以再winhex打开，发现是gif的图  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 29]  
把后缀改为gif。  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 30]  
用stegsolve打开，得到半截二维码。  
![在这里插入图片描述][20210107153555462.png]  
题目说是分层图片，ps打开，发现有图层是隐藏的。  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 31]  
开启图层再另存为。  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 32]  
用stegsolve打开，得到半截二维码。

![在这里插入图片描述][20210107153835725.png]  
两半二维码拼合  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 33]  
还是缺定位点没有，ps上去，得到完整的二维码。  
![在这里插入图片描述][20210107154257930.png]  
扫码得到flag  
flag\{yanji4n\_bu\_we1shi\}

## 10、base64stego ##

![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 34]  
下载完提示有密码，但是这是伪加密，360压缩可以无视。  
360压缩打开压缩包是这么一大串东西  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 35]  
base64解密  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 36]

就一段隐写技术的说明，没啥用。  
题目中说base64解密，最后一步精髓（最后一步是精髓，不就是提示你取行尾的密文），所以提示很明显啦，base64隐写。  
这篇文章说的很好啦，base64隐写原理。  
[https://blog.csdn.net/xnightmare/article/details/103774379][https_blog.csdn.net_xnightmare_article_details_103774379]

然后解题思路是，边解密边把隐写的密文拿到再解密。  
依次读取每行，从中提取出隐写位。  
如果最后没有‘=’，说明没有隐写位，跳过。  
如果最后是一个‘=’，说明有两位隐写位，将倒数第二个字符转化为对应的二进制索引，然后取后两位。  
如果最后是两个‘=’，说明有四位隐写位，将倒数第三个字符转化为对应的二进制索引，然后取后四位。  
将每行提取出的隐写位依次连接起来，每8位为一组转换为ASCII字符，最后不足8位的丢弃。

贴上大佬的代码：

# -*- coding: cp936 -*-
    import base64
    b64chars = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/'#base64字典库
    with open(r'C:\Users\XUHC\Documents\代码段\stego.txt', 'rb') as f: #读取文件内容
        bin_str = ''
        for line in f.readlines():
            stegb64 = str(line, "utf-8").strip("\n")
            rowb64 =  str(base64.b64encode(base64.b64decode(stegb64)), "utf-8").strip("\n")
            offset = abs(b64chars.index(stegb64.replace('=','')[-1])-b64chars.index(rowb64.replace('=','')[-1]))
            equalnum = stegb64.count('=') #no equalnum no offset
            if equalnum:
                bin_str += bin(offset)[2:].zfill(equalnum * 2)
        print(''.join([chr(int(bin_str[i:i + 8], 2)) for i in range(0, len(bin_str), 8)])) #8 位一组

![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 37]

得到flag  
Base\_sixty\_four\_point\_five

## 11、ext3 ##

![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 38]  
提示很明显：ext3文件系统，Linux环境。  
直接mount试试看，然后再进到目录，试着查找flag文件，没想到还真有，查看flag.txt，得到密文：  
ZmxhZ3tzYWpiY2lienNrampjbmJoc2J2Y2pianN6Y3N6Ymt6an0=  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 39]  
解密后得到flag  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 40]

flag\{sajbcibzskjjcnbhsbvcjbjszcszbkzj\}

## 12、功夫再高也怕菜刀 ##

![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 41]  
附件后缀很奇葩：acfff53ce3fa4e2bbe8654284dfc18e1.pcapng  
pcap是wareshark流量的抓包，png是图片，从这两方面下手了。  
1、万变不离其宗，先分解提取。  
foremost 提取  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 42]  
得到压缩包，解压要密码，确认不是伪加密后，进行下一步。  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 43]  
密码估计要在数据流里找了。  
wareshark打开流量数据包，ctrl+f，查找flag关键字。  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 44]  
根据题目提示，或许会跟png有关，找了一圈没有，发现有个6666.jpg文件，追踪流-tcp数据流，发现可疑的东西  
FFD8FF开头，FFD9结尾，jpeg图片，拿去还原看是什么。  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 45]  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 46]  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 47]  
winhex生成图片  
从FFD8FF开头，FFD9结尾复制，打开winhex  
点击文件，新建，大小设置1111  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 48]  
粘贴，提示编码选择，选ASCII Hex  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 12]  
另存为，加后缀.jpg  
![在这里插入图片描述][20210112165337940.png]  
得到一张图，估计是解压密码了  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 49]  
Th1s\_1s\_p4sswd\_!!!  
拿去解压，得到flag.txt文件  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 50]

打开flag.txt，得到flag  
flag\{3OpWdJ-JP6FzK-koCMAK-VkfWBq-75Un2z\}  
![在这里插入图片描述][20210112165610459.png]  
至此，新手的misc模块题目全部完成了。

[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center]: /images/20221120/d32f29a0e5c249ce99ff5f25e10f34d8.png
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 1]: https://img-blog.csdnimg.cn/20201126102032892.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70#pic_center
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 2]: https://img-blog.csdnimg.cn/2020112610252950.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70#pic_center
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 3]: https://img-blog.csdnimg.cn/20201126102704800.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70#pic_center
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70]: https://img-blog.csdnimg.cn/20201130154215276.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 1]: https://img-blog.csdnimg.cn/20201130154254509.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 2]: https://img-blog.csdnimg.cn/2020113015493393.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 3]: https://img-blog.csdnimg.cn/202011301552350.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 4]: https://img-blog.csdnimg.cn/20201130155349697.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 4]: https://img-blog.csdnimg.cn/20201126103023760.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70#pic_center
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 5]: https://img-blog.csdnimg.cn/20201126105118710.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70#pic_center
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 6]: https://img-blog.csdnimg.cn/20201126105357997.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70#pic_center
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 7]: https://img-blog.csdnimg.cn/20201126105756247.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70#pic_center
[20201126105951733.png_pic_center]: https://img-blog.csdnimg.cn/20201126105951733.png#pic_center
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 5]: https://img-blog.csdnimg.cn/20210104112741886.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[20210104112831209.png]: https://img-blog.csdnimg.cn/20210104112831209.png
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 6]: https://img-blog.csdnimg.cn/20210104112921685.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 7]: https://img-blog.csdnimg.cn/20210104114251538.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 8]: https://img-blog.csdnimg.cn/2021010411435269.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 9]: https://img-blog.csdnimg.cn/2021010411461787.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 8]: https://img-blog.csdnimg.cn/20201126110608114.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70#pic_center
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 9]: https://img-blog.csdnimg.cn/20201126110654894.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70#pic_center
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 10]: https://img-blog.csdnimg.cn/20201126112209103.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70#pic_center
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 11]: https://img-blog.csdnimg.cn/20201126112037607.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70#pic_center
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 10]: https://img-blog.csdnimg.cn/20210105172122208.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 11]: https://img-blog.csdnimg.cn/20210106110900200.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 12]: https://img-blog.csdnimg.cn/20210106111353370.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 13]: https://img-blog.csdnimg.cn/20210106112844472.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 14]: https://img-blog.csdnimg.cn/2021010611475981.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 15]: https://img-blog.csdnimg.cn/20210106114849708.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 16]: https://img-blog.csdnimg.cn/20210106115010491.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 17]: https://img-blog.csdnimg.cn/20210106115118754.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 18]: https://img-blog.csdnimg.cn/20210106155755592.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 19]: https://img-blog.csdnimg.cn/20210106155808392.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 20]: https://img-blog.csdnimg.cn/20210107093836197.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 21]: https://img-blog.csdnimg.cn/20210107093933832.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 22]: https://img-blog.csdnimg.cn/20210107094354597.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 23]: https://img-blog.csdnimg.cn/20210107113650387.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 24]: https://img-blog.csdnimg.cn/202101071140303.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 25]: https://img-blog.csdnimg.cn/20210107114146828.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 26]: https://img-blog.csdnimg.cn/20210107114821117.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 27]: https://img-blog.csdnimg.cn/20210107115654890.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 28]: https://img-blog.csdnimg.cn/20210107115746441.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 29]: https://img-blog.csdnimg.cn/20210107120812707.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 30]: https://img-blog.csdnimg.cn/20210107152951866.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[20210107153555462.png]: https://img-blog.csdnimg.cn/20210107153555462.png
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 31]: https://img-blog.csdnimg.cn/20210107153655894.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 32]: https://img-blog.csdnimg.cn/20210107153732886.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[20210107153835725.png]: https://img-blog.csdnimg.cn/20210107153835725.png
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 33]: https://img-blog.csdnimg.cn/20210107154150996.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[20210107154257930.png]: https://img-blog.csdnimg.cn/20210107154257930.png
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 34]: https://img-blog.csdnimg.cn/20210107154954598.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 35]: https://img-blog.csdnimg.cn/20210107155141362.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 36]: https://img-blog.csdnimg.cn/20210107162211698.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[https_blog.csdn.net_xnightmare_article_details_103774379]: https://blog.csdn.net/xnightmare/article/details/103774379
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 37]: https://img-blog.csdnimg.cn/20210108162538744.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 38]: https://img-blog.csdnimg.cn/20210108162801216.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 39]: https://img-blog.csdnimg.cn/20210108164820412.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 40]: https://img-blog.csdnimg.cn/20210108165043446.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 41]: https://img-blog.csdnimg.cn/20210108165453977.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 42]: https://img-blog.csdnimg.cn/20210112095623110.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 43]: https://img-blog.csdnimg.cn/20210112095755472.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 44]: https://img-blog.csdnimg.cn/20210112163931508.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 45]: https://img-blog.csdnimg.cn/20210112164313857.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 46]: https://img-blog.csdnimg.cn/20210112164349492.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 47]: https://img-blog.csdnimg.cn/20210112164417295.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 48]: https://img-blog.csdnimg.cn/202101121649123.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70_pic_center 12]: https://img-blog.csdnimg.cn/20210112165141403.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70#pic_center
[20210112165337940.png]: https://img-blog.csdnimg.cn/20210112165337940.png
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 49]: https://img-blog.csdnimg.cn/20210112165412625.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ_size_16_color_FFFFFF_t_70 50]: https://img-blog.csdnimg.cn/20210112165507453.png?x-oss-process=image/watermark,type_ZmFuZ3poZW5naGVpdGk,shadow_10,text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3h1aGMyNQ==,size_16,color_FFFFFF,t_70
[20210112165610459.png]: https://img-blog.csdnimg.cn/20210112165610459.png