\uc870\ud68c\uc218: 26<\/p>
\uc77c\ub2e8 \ubb38\uc81c\uc5d0 \uc81c\uc2dc\ub41c http:\/\/mercury.picoctf.net:21939\/ \ub85c \uc811\uc18d \ud574 \ubcf8\ub2e4. \ub208\uc774 \uc544\ud504\ub2c8 \uc77c\ub2e8 \ucd5c\uc18c\ud654\uc2dc\ud0a4\uc790.<\/p>\n \uc77c\ub2e8 \uc6f9\ud574\ud0b9\uc778 \uac83 \uac19\uc73c\ub2c8 burpsuite\ub97c \uc2e4\ud589\ud558\uace0 \ud504\ub85d\uc2dc \ud0ed\uc73c\ub85c \uac00\uc11c \uc778\ud130\uc149\ud2b8\ud574\ubcf4\uc790.<\/p>\n \ube68\uac15\uc740<\/p>\n \ud30c\ub791\uc740<\/p>\n \ub9ac\ud018\uc2a4\ud2b8\ub294 \uc774\ub807\uac8c \ub098\uc628\ub2e4.<\/p>\n \ubb38\uc81c \uc81c\ubaa9\uc774 GET aHEAD<\/strong>\ub2c8\uae4c HEAD \ub9e4\uc18c\ub4dc\ub97c \uc804\uc1a1\ud574\ubcf4\uc790. \uc751\ub2f5\uc73c\ub85c \ud50c\ub798\uadf8\uac00 \uc628\ub2e4.<\/p>\n \ub05d.<\/p>\n","protected":false},"excerpt":{"rendered":" \uc870\ud68c\uc218: 26\ubb38\uc81c Find the flag being held on this server to get ahead of the competition http:\/\/mercury.picoctf.net:21939\/ \uc77c\ub2e8 \ubb38\uc81c\uc5d0 \uc81c\uc2dc\ub41c http:\/\/mercury.picoctf.net:21939\/ \ub85c \uc811\uc18d \ud574 \ubcf8\ub2e4. \uc7a0\uae50 \ub3cc\uc544\ubcf4\uba74 \uc2dc\ubed8\uac74 \ud654\uba74\uacfc \uc2dc\ud37c\ub7f0 \ud654\uba74\uc774 \ub098\uc628\ub2e4. (\ub208 \uc544\ud504\ub2e4\u315c) \ub208\uc774 \uc544\ud504\ub2c8 \uc77c\ub2e8 \ucd5c\uc18c\ud654\uc2dc\ud0a4\uc790. \uc77c\ub2e8 \uc6f9\ud574\ud0b9\uc778 \uac83 \uac19\uc73c\ub2c8 burpsuite\ub97c \uc2e4\ud589\ud558\uace0 \ud504\ub85d\uc2dc \ud0ed\uc73c\ub85c \uac00\uc11c \uc778\ud130\uc149\ud2b8\ud574\ubcf4\uc790. \ube68\uac15\uc740 GET \/ HTTP\/1.1 Host: mercury.picoctf.net:21939 Upgrade-Insecure-Requests:…Continue reading [picoCTF] GET aHEAD \ud480\uc774<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[54,53],"class_list":["post-4871","post","type-post","status-publish","format-standard","hentry","category-computer","tag-ctf","tag-picoctf"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.photoguraphy.com\/index.php?rest_route=\/wp\/v2\/posts\/4871","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.photoguraphy.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.photoguraphy.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.photoguraphy.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.photoguraphy.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4871"}],"version-history":[{"count":1,"href":"https:\/\/www.photoguraphy.com\/index.php?rest_route=\/wp\/v2\/posts\/4871\/revisions"}],"predecessor-version":[{"id":4872,"href":"https:\/\/www.photoguraphy.com\/index.php?rest_route=\/wp\/v2\/posts\/4871\/revisions\/4872"}],"wp:attachment":[{"href":"https:\/\/www.photoguraphy.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4871"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.photoguraphy.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4871"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.photoguraphy.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4871"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}Find the flag being held on this server to get ahead of the competition http:\/\/mercury.picoctf.net:21939\/<\/code><\/p>\n
\n
\n\uc7a0\uae50 \ub3cc\uc544\ubcf4\uba74 \uc2dc\ubed8\uac74 \ud654\uba74\uacfc \uc2dc\ud37c\ub7f0 \ud654\uba74\uc774 \ub098\uc628\ub2e4. (\ub208 \uc544\ud504\ub2e4\u315c)<\/p>\nGET \/ HTTP\/1.1\nHost: mercury.picoctf.net:21939\nUpgrade-Insecure-Requests: 1\nUser-Agent: Mozilla\/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit\/537.36 (KHTML, like Gecko) Chrome\/120.0.6099.71 Safari\/537.36\nAccept: text\/html,application\/xhtml+xml,application\/xml;q=0.9,image\/avif,image\/webp,image\/apng,*\/*;q=0.8,application\/signed-exchange;v=b3;q=0.7\nAccept-Encoding: gzip, deflate, br\nAccept-Language: ko-KR,ko;q=0.9,en-US;q=0.8,en;q=0.7\nConnection: close\n<\/code><\/pre>\nPOST \/index.php HTTP\/1.1\nHost: mercury.picoctf.net:21939\nContent-Length: 0\nCache-Control: max-age=0\nUpgrade-Insecure-Requests: 1\nOrigin: http:\/\/mercury.picoctf.net:21939\nContent-Type: application\/x-www-form-urlencoded\nUser-Agent: Mozilla\/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit\/537.36 (KHTML, like Gecko) Chrome\/120.0.6099.71 Safari\/537.36\nAccept: text\/html,application\/xhtml+xml,application\/xml;q=0.9,image\/avif,image\/webp,image\/apng,*\/*;q=0.8,application\/signed-exchange;v=b3;q=0.7\nReferer: http:\/\/mercury.picoctf.net:21939\/\nAccept-Encoding: gzip, deflate, br\nAccept-Language: ko-KR,ko;q=0.9,en-US;q=0.8,en;q=0.7\nConnection: close\n<\/code><\/pre>\n
\n\ud504\ub85d\uc2dc \uc694\uccad\uc0ac\ud56d\uc744 \ub9ac\ud53c\ud130\ub85c \ubcf4\ub0b8 \ub2e4\uc74c
\n\ub9e4\uc18c\ub4dc(\uc9c0\uae08\uc758 \uacbd\uc6b0 GET \ub610\ub294 POST)\ub97c HEAD\ub85c \uc218\uc815\ud558\uace0 \uc804\uc1a1\ud574\ubcf4\uc790.<\/p>\n