{"type":"rich","width":"100%","version":"1.0","provider_name":"Hatena Blog","published":"2020-07-24 11:33:14","categories":["Security"],"blog_url":"https://blog.hamayanhamayan.com/","title":"deserializeme [UIUCTF 2020]","height":"190","author_name":"hamayanhamayan","url":"https://blog.hamayanhamayan.com/entry/2020/07/24/113314","provider_url":"https://hatena.blog","description":"CTFtime.org / UIUCTF 2020 / deserializeme This service deserializes whatever you send it. Can you pwn it? https://deserializeme.chal.uiuc.tf/ author: arxenix \u30bd\u30fc\u30b9\u30b3\u30fc\u30c9\u3082\u4e0e\u3048\u3089\u308c\u308b\u3002 \u4ee5\u4e0b\u629c\u7c8b\u3002flag.txt\u3068\u3044\u3046\u30d5\u30a1\u30a4\u30eb\u3082\u76f4\u4e0b\u306b\u3042\u308a\u3001\u305d\u3053\u306b\u30d5\u30e9\u30b0\u304c\u3042\u308b\u3088\u3046\u3060\u3002 @app.route('/', methods=[\"POST\"]) def pwnme(): if not re.fullmatch(b\"^[\\n --/-\\]a-}]*$\"\u2026","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fblog.hamayanhamayan.com%2Fentry%2F2020%2F07%2F24%2F113314\" title=\"deserializeme [UIUCTF 2020] - \u306f\u307e\u3084\u3093\u306f\u307e\u3084\u3093\u306f\u307e\u3084\u3093\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","image_url":null,"blog_title":"\u306f\u307e\u3084\u3093\u306f\u307e\u3084\u3093\u306f\u307e\u3084\u3093","author_url":"https://blog.hatena.ne.jp/hamayanhamayan/"}