hrishikesh-hiray/university-of-porto-ctf-xstf-dualcore

GitHub: hrishikesh-hiray/university-of-porto-ctf-xstf-dualcore

波尔图大学 xSTF CTF 竞赛的完整解题报告合集，覆盖密码学、取证、逆向、PWN、Web等七大类别共24道题目。

Stars: 0 | Forks: 0

# 波尔图大学 CTF - xSTF Writeups 这是 xSTF CTF 平台的解题报告、辅助脚本、相关文件以及本地解题笔记的集中仓库。活动平台：https://ctf.xstf.pt/ ## 概览 | 项目 | 值 | |---|---| | 类别 | `CRYPTO`, `FORENSICS`, `MISC`, `OSINT`, `PWN`, `REV`, `WEB` | | 挑战文件夹总数 | `24` | | 主要目标 | 将所有解题报告、脚本、相关文件和解题笔记集中在一处 | ## 目录 - [概述](#overview) - [仓库统计](#repository-stats) - [目录树](#directory-tree) - [挑战索引](#challenge-index) - [如何使用本仓库](#how-to-use-this-repo) - [备注](#notes) - [免责声明](#disclaimer) ## 概述本仓库按主要的 CTF 类别进行组织： - `CRYPTO` - `FORENSICS` - `MISC` - `OSINT` - `PWN` - `REV` - `WEB` 每个挑战目录通常包含： - 一个解题报告文件（`writeup.md` 或类似名称的变体） - 挑战二进制文件/文件/压缩包 - 解题过程中使用的可选辅助脚本（`solve.py`、分析脚本、exploit 构建器等） ## 仓库统计 | 类别 | 数量 | |---|---| | `CRYPTO` | 5 | | `FORENSICS` | 1 | | `MISC` | 4 | | `OSINT` | 1 | | `PWN` | 3 | | `REV` | 5 | | `WEB` | 5 | 顶级类别总数：`7` 挑战文件夹总数（每个类别的顶级文件夹）：`24` ## 目录树 ``` University Of Porto CTF/ |- README.md |- CRYPTO/ | |- Árvore Genealógica/ | | `- writeup .md | |- Hidden Signal/ | | |- passwords.txt | | `- writeup.md | |- LH RH/ | | |- handout.py | | `- writeup.md | |- vibedns/ | | `- writeup.md | `- xSTF's Decryption Capsule/ | |- chall (1).py | |- solve.py | `- writeup.md |- FORENSICS/ | `- xSTF's Annual Security Report/ | |- 2025-Security-Report.pdf | |- appendix.pdf | |- multiple cracking/inspection scripts | `- writeup.md |- MISC/ | |- BluPage/ | | `- writeup.md | |- Deoxyribonucleic acid/ | | |- sample.txt | | `- writeup.md | |- Get off the ISS/ | | |- handout/ , handout.zip | | |- page.html , tmp_index.html | | `- wreiteup.md | `- Jailed/ | |- chall.py | `- writeup.md |- OSINT/ | `- Left Behind/ | `- writeup.md |- PWN/ | |- car-museum/ | | `- writeup .md | |- EU Filter/ | | |- eufilter/ , unzipped/ | | |- exploit payload generators (.js) | | `- writeup.md | `- Generous Allocator/ | |- overlap | |- libc.so.6 | |- solve.py | `- writeup.md |- REV/ | |- Inconspicuous Program/ | | |- inconspicuous | | `- writeup.mdf | |- Locked Temple/ | | |- locked_temple | | |- disasm/analysis helper scripts | | `- writeup.md | |- Minecraft Enterprise Edition/ | | `- minecrated enterprise revwriteup .md | |- Old Calculator/ | | `- calculatorwriteup.md | `- Wasmbler/ | `- writeup .md `- WEB/ |- 0day on ipaddress/ | |- Dockerfile , server.py | |- flag files | |- README.md | `- writup.md |- mAuth/ | |- admin-app/ , proxy/ , public-app/ | |- docker-compose.yml | |- solve.py | `- writeup.md |- Media-meeting/ | `- media-meeting/ | |- docker-compose.yaml | |- solve scripts | `- writeup.md |- Microsoft Axel/ | `- microsoft-axel/ | |- app.py | `- writeup.md `- Post Builder/ |- post-builder/ |- post-builder.zip `- writeup.md ``` ## 挑战索引 ### CRYPTO | 挑战类型 | 挑战名称 | 类别 | Flag | 解题报告 | |---|---|---|---|---| | CRYPTO | Árvore Genealógica | Cryptography | `upCTF{0_m33s1_é_p3qu3n1n0-DsRMlOMoa37607ab}` | [解题报告]() | | CRYPTO | Hidden Signal | Cryptography | `upCTF{m4rk0v_w4s_h3r3_4ll_4l0ng}` | [解题报告]() | | CRYPTO | LH RH | Cryptography | `upCTF{H0p3_y0u_d1dnt_us3_41_1_sw3ar_th1s_1s_n1ce...If you are CR7 and you solved this, I love you}` | [解题报告]() | | CRYPTO | vibedns | Cryptography | `upCTF{ev3n_wh3n_1ts_crypto_1ts_alw4ys_Dn5_EDs2SH5yf7465f8e}` | [解题报告]() | | CRYPTO | xSTF's Decryption Capsule | Cryptography | `upCTF{p4dd1ng_0r4cl3_s4ys_xSTF_1s_num3r0_un0-SSUceavt62de7854}` | [解题报告]() | ### FORENSICS | 挑战类型 | 挑战名称 | 类别 | Flag | 解题报告 | |---|---|---|---|---| | FORENSICS | xSTF's Annual Security Report | Forensics | `upCTF{V3ry_b4d_S3cUriTy_P0stUr3}` | [解题报告]() | ### MISC | 挑战类型 | 挑战名称 | 类别 | Flag | 解题报告 | |---|---|---|---|---| | MISC | BluPage | Miscellaneous | `upCTF{PNG_hdrs_4r3_sn34ky}` | [解题报告]() | | MISC | Deoxyribonucleic acid | Miscellaneous | `upCTF{DnA_IsCh3pear_Th3n_R4M}` | [解题报告]() | | MISC | Get off the ISS | Miscellaneous | `upCTF{fl4t_e4rth3rs_cou1d_n3v3r-6KepCQ1d003f538d}` | [解题报告]() | | MISC | Jailed | Miscellaneous | `upCTF{fmt_str1ng5_4r3nt_0nly_a_C_th1ng-p0eX6TzJaa01685e}` | [解题报告]() | ### OSINT | 挑战类型 | 挑战名称 | 类别 | Flag | 解题报告 | |---|---|---|---|---| | OSINT | Left Behind | OSINT | `upCTF{John_Stephen}` | [解题报告]() | ### PWN | 挑战类型 | 挑战名称 | 类别 | Flag | 解题报告 | |---|---|---|---|---| | PWN | car-museum | Binary Exploitation | `upCTF{c4tc4ll1ng_1s_n0t_c00l-evlbx4ka2ad216ce}` | [解题报告]() | | PWN | EU Filter | Binary Exploitation | `upCTF{jus7_s4y_1ts_f0r_7h3_ch1ldr3n-9sMH3wbG1be9a3de}` | [解题报告]() | | PWN | Generous Allocator | Binary Exploitation | `upCTF{h34d3r_1nclud3d_by_m4ll0c-c2hSGa8Nc900ce90}` | [解题报告]() | ### REV | 挑战类型 | 挑战名称 | 类别 | Flag | 解题报告 | |---|---|---|---|---| | REV | Inconspicuous Program | Reverse Engineering | `upCTF{I_w4s_!a110wed_t0_write_m4lw4r3}` | [解题报告]() | | REV | Locked Temple | Reverse Engineering | `upCTF{01122301_7}` | [解题报告]() | | REV | Minecraft Enterprise Edition | Reverse Engineering | `upCTF{m1n3cr4ft_0n_th3_b4nks-xh7IPnEKdff1f41f}` | [解题报告]() | | REV | Old Calculator | Reverse Engineering | `upCTF{1F41L3DC4LCF0RTH1S}` | [解题报告]() | | REV | Wasmbler | Reverse Engineering | `upCTF{n3rd_squ4d_4ss3mbl3_c0de_7f2b1d}` | [解题报告]() | ### WEB | 挑战类型 | 挑战名称 | 类别 | Flag | 解题报告 | |---|---|---|---|---| | WEB | 0day on ipaddress | Web Exploitation | `upCTF{h0w_c4n_1_wr1t3_t0_4n_ip4ddress?!-FsEyppln13d4d191}` | [解题报告]() | | WEB | mAuth | Web Exploitation | `upCTF{n3v3r_m4k3_youuuur_0wn_mtls_Usm3SchLTtUDe05991e1}` | [解题报告]() | | WEB | Media-meeting | Web Exploitation | `upCTF{xsL34ks_4r3_pr33ty-NVzmDaUq93dba364}` | [解题报告]() | | WEB | Microsoft Axel | Web Exploitation | `upCTF{4x3l_0d4y_w1th4_tw1st-D4eH1LN0da079878}` | [解题报告]() | | WEB | Post Builder | Web Exploitation | `upCTF{r34ct_js_1s_still_j4v4scr1pt-WOlvfjOl2b4494e6}` | [解题报告]() | ## 免责声明这些解题报告仅用于教育目的分享。

标签：AI工具, CTF复盘, CTF题解, DNS 反向解析, ESC4, IP 地址批量处理, meg, OSINT, PWN, Python, Web安全, Writeup, xSTF, 二进制漏洞利用, 云资产清单, 信息安全, 取证, 后端开发, 域名收集, 域环境安全, 密码学, 手动系统调用, 技术文档, 攻防竞赛, 数据可视化, 数据泄露, 无后门, 杂项, 波尔图大学, 网络安全, 脚本, 蓝队分析, 解题报告, 解题脚本, 请求拦截, 逆向工具, 逆向工程, 隐私保护