【CTF MISC】pyc文件反编译到Python源码-2017世安杯CTF writeup详解

时间:2023-02-02 20:17:08

1、题目

Create-By-SimpleLab

适合作为桌面的图片

首先是一张图片,然后用StegSolve进行分析,发现二维码

【CTF MISC】pyc文件反编译到Python源码-2017世安杯CTF writeup详解

扫码得到一串字符

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

010 Editor特殊粘贴方式保存为.pyc。

2、原理

Pyc的反编译工具记录。头部信息如下图:

【CTF MISC】pyc文件反编译到Python源码-2017世安杯CTF writeup详解

3、工具

在线pyc,pyo反编译python反编译

http://tools.bugscaner.com/decompyle/

A Python cross-version decompiler

https://github.com/rocky/python-uncompyle6

工具:py2.7 uncompyle2 (Win7 x64系统)

相关文章