Article Directory
1. "Log"
Open environment
Scan with dirsearch and found git leak
python dirsearch.py -u <url> -e *
Clone the directory with Githack
Note that you need python2 environment and Git installation
python2 Githack.py <url>
Now that the log is prompted, check the log record
git log
Found that there are records with added flags.
There are two ideas at this time
Method one, git reset
Use git reset
rollback to the previous version to get the flag file
git reset --hard <commit>
Method two, git diff
Use git diff
the difference between the current version and the previous version to get the flag
git diff <commit>
2. "Stash"
Similarly, clone to local
Open ./.git
found stash file
stash can be understood as a cache file of git
Use notepad++ to open to get the version number information
Then you can get the flag by using rollback or comparison
3. "Index"
The flag can be obtained directly after cloning to the local
Finish
Welcome to leave a message in the comment area.
Thanks for browsing