Ross Wan's World!

Python, Ajax, PHP and Linux.

The Python Challenge Lv.8

Posted by Ross Wan 于 2011/09/01

Lv.8

一打开第8关的网页, 显示的是一张蜜蜂辛勤(Working hard)采花图片, 将鼠标放在蜜蜂上, 发现蜜蜂的区域是一个链接: http://www.pythonchallenge.com/pc/return/good.html
打开那链接,发觉是需账号认证才能打开的. 用户名是和密码是什么呢? 将网页退后到第8关的网页, 查看其源代码, 发现了二行特别的注释:

un: 'BZh91AY&SYA\xaf\x82\r\x00\x00\x01\x01\x80\x02\xc0\x02\x00 \x00!\x9ah3M\x07<]\xc9\x14\xe1BA\x06\xbe\x084'
pw: 'BZh91AY&SY\x94$|\x0e\x00\x00\x00\x81\x00\x03$ \x00!\x9ah3M\x13<]\xc9\x14\xe1BBP\x91\xf08'

看来, 将上面的注释解密就行了. 留意那两行注释, 都是以”BZh91AY&SY”开头的,还有图片是蜜蜂?Bee?猜想是不是用 bz2 加密的呢? 立即试试:

import bz2

if __name__ == '__main__':
    un = b'BZh91AY&SYA\xaf\x82\r\x00\x00\x01\x01\x80\x02\xc0\x02\x00 \x00!\x9ah3M\x07<]\xc9\x14\xe1BA\x06\xbe\x084'
    pw = b'BZh91AY&SY\x94$|\x0e\x00\x00\x00\x81\x00\x03$ \x00!\x9ah3M\x13<]\xc9\x14\xe1BBP\x91\xf08'
    print('Username: %s' % bz2.decompress(un).decode('ascii'))
    print('Password: %s' % bz2.decompress(pw).decode('ascii'))

通往下一关: http://www.pythonchallenge.com/pc/return/good.html 的用户名是huge, 密码是file.

Have fun:)

Advertisements

2条回应 to “The Python Challenge Lv.8”

  1. […] The Python Challenge Lv.8 […]

  2. […] The Python Challenge Lv.8 […]

发表评论

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / 更改 )

Twitter picture

You are commenting using your Twitter account. Log Out / 更改 )

Facebook photo

You are commenting using your Facebook account. Log Out / 更改 )

Google+ photo

You are commenting using your Google+ account. Log Out / 更改 )

Connecting to %s

 
%d 博主赞过: