├── README.md
├── flag_file.txt
├── flag_file
    ├── README.md
    ├── exp.py
    ├── flag.txt
    ├── flag_file.txt
    └── path.txt
├── php_file.txt
└── system_file.txt


/README.md:
--------------------------------------------------------------------------------
1 | # ArbitraryFileReadList
2 | CTF中任意文件读取的fuzz列表 (Arbitrary file read fuzz list in CTF)
3 | 


--------------------------------------------------------------------------------
/flag_file.txt:
--------------------------------------------------------------------------------
  1 | /flag
  2 | /flag.txt
  3 | /f1ag
  4 | /fl4g
  5 | /f14g
  6 | /Flag
  7 | /F1ag
  8 | /F14g
  9 | /Fl4g
 10 | /fflag
 11 | /ffflag
 12 | /fffflag
 13 | /fffflag
 14 | /ffffflag
 15 | /fffffflag
 16 | /ffffffflag
 17 | /fffffffflag
 18 | /ffffffffflag
 19 | /ffl4g
 20 | /fffl4g
 21 | /ffffl4g
 22 | /ffffl4g
 23 | /fffffl4g
 24 | /ffffffl4g
 25 | /fffffffl4g
 26 | /ffffffffl4g
 27 | /fffffffffl4g
 28 | /this_is_flag
 29 | /this_is_flag.txt
 30 | /this_Is_Flag
 31 | /th1s_1s_fl4g
 32 | /this_1s_fl4g
 33 | /this_1s_Fl4g
 34 | /This_is_flag
 35 | /Th1s_1s_fl4g
 36 | /Th1s_1s_Flag
 37 | /Th1s_1s_Fl4g
 38 | /flag_is_here
 39 | /Flag_is_here
 40 | /flag_is_here.txt
 41 | /readflag
 42 | /usr/flag
 43 | /usr/flag.txt
 44 | /usr/f1ag
 45 | /usr/fl4g
 46 | /usr/f14g
 47 | /usr/Flag
 48 | /usr/F1ag
 49 | /usr/F14g
 50 | /usr/Fl4g
 51 | /usr/fflag
 52 | /usr/ffflag
 53 | /usr/fffflag
 54 | /usr/fffflag
 55 | /usr/ffffflag
 56 | /usr/fffffflag
 57 | /usr/ffffffflag
 58 | /usr/fffffffflag
 59 | /usr/ffffffffflag
 60 | /usr/ffl4g
 61 | /usr/fffl4g
 62 | /usr/ffffl4g
 63 | /usr/ffffl4g
 64 | /usr/fffffl4g
 65 | /usr/ffffffl4g
 66 | /usr/fffffffl4g
 67 | /usr/ffffffffl4g
 68 | /usr/fffffffffl4g
 69 | /usr/this_is_flag
 70 | /usr/this_is_flag.txt
 71 | /usr/this_Is_Flag
 72 | /usr/th1s_1s_fl4g
 73 | /usr/this_1s_fl4g
 74 | /usr/this_1s_Fl4g
 75 | /usr/This_is_flag
 76 | /usr/Th1s_1s_fl4g
 77 | /usr/Th1s_1s_Flag
 78 | /usr/Th1s_1s_Fl4g
 79 | /usr/flag_is_here
 80 | /usr/Flag_is_here
 81 | /usr/flag_is_here.txt
 82 | /usr/readflag
 83 | /home/flag
 84 | /home/flag.txt
 85 | /home/f1ag
 86 | /home/fl4g
 87 | /home/f14g
 88 | /home/Flag
 89 | /home/F1ag
 90 | /home/F14g
 91 | /home/Fl4g
 92 | /home/fflag
 93 | /home/ffflag
 94 | /home/fffflag
 95 | /home/fffflag
 96 | /home/ffffflag
 97 | /home/fffffflag
 98 | /home/ffffffflag
 99 | /home/fffffffflag
100 | /home/ffffffffflag
101 | /home/ffl4g
102 | /home/fffl4g
103 | /home/ffffl4g
104 | /home/ffffl4g
105 | /home/fffffl4g
106 | /home/ffffffl4g
107 | /home/fffffffl4g
108 | /home/ffffffffl4g
109 | /home/fffffffffl4g
110 | /home/this_is_flag
111 | /home/this_is_flag.txt
112 | /home/this_Is_Flag
113 | /home/th1s_1s_fl4g
114 | /home/this_1s_fl4g
115 | /home/this_1s_Fl4g
116 | /home/This_is_flag
117 | /home/Th1s_1s_fl4g
118 | /home/Th1s_1s_Flag
119 | /home/Th1s_1s_Fl4g
120 | /home/flag_is_here
121 | /home/Flag_is_here
122 | /home/flag_is_here.txt
123 | /home/readflag
124 | /var/flag
125 | /var/flag.txt
126 | /var/f1ag
127 | /var/fl4g
128 | /var/f14g
129 | /var/Flag
130 | /var/F1ag
131 | /var/F14g
132 | /var/Fl4g
133 | /var/fflag
134 | /var/ffflag
135 | /var/fffflag
136 | /var/fffflag
137 | /var/ffffflag
138 | /var/fffffflag
139 | /var/ffffffflag
140 | /var/fffffffflag
141 | /var/ffffffffflag
142 | /var/ffl4g
143 | /var/fffl4g
144 | /var/ffffl4g
145 | /var/ffffl4g
146 | /var/fffffl4g
147 | /var/ffffffl4g
148 | /var/fffffffl4g
149 | /var/ffffffffl4g
150 | /var/fffffffffl4g
151 | /var/this_is_flag
152 | /var/this_is_flag.txt
153 | /var/this_Is_Flag
154 | /var/th1s_1s_fl4g
155 | /var/this_1s_fl4g
156 | /var/this_1s_Fl4g
157 | /var/This_is_flag
158 | /var/Th1s_1s_fl4g
159 | /var/Th1s_1s_Flag
160 | /var/Th1s_1s_Fl4g
161 | /var/flag_is_here
162 | /var/Flag_is_here
163 | /var/flag_is_here.txt
164 | /var/readflag
165 | /tmp/flag
166 | /tmp/flag.txt
167 | /tmp/f1ag
168 | /tmp/fl4g
169 | /tmp/f14g
170 | /tmp/Flag
171 | /tmp/F1ag
172 | /tmp/F14g
173 | /tmp/Fl4g
174 | /tmp/fflag
175 | /tmp/ffflag
176 | /tmp/fffflag
177 | /tmp/fffflag
178 | /tmp/ffffflag
179 | /tmp/fffffflag
180 | /tmp/ffffffflag
181 | /tmp/fffffffflag
182 | /tmp/ffffffffflag
183 | /tmp/ffl4g
184 | /tmp/fffl4g
185 | /tmp/ffffl4g
186 | /tmp/ffffl4g
187 | /tmp/fffffl4g
188 | /tmp/ffffffl4g
189 | /tmp/fffffffl4g
190 | /tmp/ffffffffl4g
191 | /tmp/fffffffffl4g
192 | /tmp/this_is_flag
193 | /tmp/this_is_flag.txt
194 | /tmp/this_Is_Flag
195 | /tmp/th1s_1s_fl4g
196 | /tmp/this_1s_fl4g
197 | /tmp/this_1s_Fl4g
198 | /tmp/This_is_flag
199 | /tmp/Th1s_1s_fl4g
200 | /tmp/Th1s_1s_Flag
201 | /tmp/Th1s_1s_Fl4g
202 | /tmp/flag_is_here
203 | /tmp/Flag_is_here
204 | /tmp/flag_is_here.txt
205 | /tmp/readflag
206 | /var/tmp/flag
207 | /var/tmp/flag.txt
208 | /var/tmp/f1ag
209 | /var/tmp/fl4g
210 | /var/tmp/f14g
211 | /var/tmp/Flag
212 | /var/tmp/F1ag
213 | /var/tmp/F14g
214 | /var/tmp/Fl4g
215 | /var/tmp/fflag
216 | /var/tmp/ffflag
217 | /var/tmp/fffflag
218 | /var/tmp/fffflag
219 | /var/tmp/ffffflag
220 | /var/tmp/fffffflag
221 | /var/tmp/ffffffflag
222 | /var/tmp/fffffffflag
223 | /var/tmp/ffffffffflag
224 | /var/tmp/ffl4g
225 | /var/tmp/fffl4g
226 | /var/tmp/ffffl4g
227 | /var/tmp/ffffl4g
228 | /var/tmp/fffffl4g
229 | /var/tmp/ffffffl4g
230 | /var/tmp/fffffffl4g
231 | /var/tmp/ffffffffl4g
232 | /var/tmp/fffffffffl4g
233 | /var/tmp/this_is_flag
234 | /var/tmp/this_is_flag.txt
235 | /var/tmp/this_Is_Flag
236 | /var/tmp/th1s_1s_fl4g
237 | /var/tmp/this_1s_fl4g
238 | /var/tmp/this_1s_Fl4g
239 | /var/tmp/This_is_flag
240 | /var/tmp/Th1s_1s_fl4g
241 | /var/tmp/Th1s_1s_Flag
242 | /var/tmp/Th1s_1s_Fl4g
243 | /var/tmp/flag_is_here
244 | /var/tmp/Flag_is_here
245 | /var/tmp/flag_is_here.txt
246 | /var/tmp/readflag
247 | /var/www/flag
248 | /var/www/flag.txt
249 | /var/www/f1ag
250 | /var/www/fl4g
251 | /var/www/f14g
252 | /var/www/Flag
253 | /var/www/F1ag
254 | /var/www/F14g
255 | /var/www/Fl4g
256 | /var/www/fflag
257 | /var/www/ffflag
258 | /var/www/fffflag
259 | /var/www/fffflag
260 | /var/www/ffffflag
261 | /var/www/fffffflag
262 | /var/www/ffffffflag
263 | /var/www/fffffffflag
264 | /var/www/ffffffffflag
265 | /var/www/ffl4g
266 | /var/www/fffl4g
267 | /var/www/ffffl4g
268 | /var/www/ffffl4g
269 | /var/www/fffffl4g
270 | /var/www/ffffffl4g
271 | /var/www/fffffffl4g
272 | /var/www/ffffffffl4g
273 | /var/www/fffffffffl4g
274 | /var/www/this_is_flag
275 | /var/www/this_is_flag.txt
276 | /var/www/this_Is_Flag
277 | /var/www/th1s_1s_fl4g
278 | /var/www/this_1s_fl4g
279 | /var/www/this_1s_Fl4g
280 | /var/www/This_is_flag
281 | /var/www/Th1s_1s_fl4g
282 | /var/www/Th1s_1s_Flag
283 | /var/www/Th1s_1s_Fl4g
284 | /var/www/flag_is_here
285 | /var/www/Flag_is_here
286 | /var/www/flag_is_here.txt
287 | /var/www/readflag
288 | /var/www/html/flag
289 | /var/www/html/flag.txt
290 | /var/www/html/f1ag
291 | /var/www/html/fl4g
292 | /var/www/html/f14g
293 | /var/www/html/Flag
294 | /var/www/html/F1ag
295 | /var/www/html/F14g
296 | /var/www/html/Fl4g
297 | /var/www/html/fflag
298 | /var/www/html/ffflag
299 | /var/www/html/fffflag
300 | /var/www/html/fffflag
301 | /var/www/html/ffffflag
302 | /var/www/html/fffffflag
303 | /var/www/html/ffffffflag
304 | /var/www/html/fffffffflag
305 | /var/www/html/ffffffffflag
306 | /var/www/html/ffl4g
307 | /var/www/html/fffl4g
308 | /var/www/html/ffffl4g
309 | /var/www/html/ffffl4g
310 | /var/www/html/fffffl4g
311 | /var/www/html/ffffffl4g
312 | /var/www/html/fffffffl4g
313 | /var/www/html/ffffffffl4g
314 | /var/www/html/fffffffffl4g
315 | /var/www/html/this_is_flag
316 | /var/www/html/this_is_flag.txt
317 | /var/www/html/this_Is_Flag
318 | /var/www/html/th1s_1s_fl4g
319 | /var/www/html/this_1s_fl4g
320 | /var/www/html/this_1s_Fl4g
321 | /var/www/html/This_is_flag
322 | /var/www/html/Th1s_1s_fl4g
323 | /var/www/html/Th1s_1s_Flag
324 | /var/www/html/Th1s_1s_Fl4g
325 | /var/www/html/flag_is_here
326 | /var/www/html/Flag_is_here
327 | /var/www/html/flag_is_here.txt
328 | /var/www/html/readflag
329 | /app/flag
330 | /app/flag.txt
331 | /app/f1ag
332 | /app/fl4g
333 | /app/f14g
334 | /app/Flag
335 | /app/F1ag
336 | /app/F14g
337 | /app/Fl4g
338 | /app/fflag
339 | /app/ffflag
340 | /app/fffflag
341 | /app/fffflag
342 | /app/ffffflag
343 | /app/fffffflag
344 | /app/ffffffflag
345 | /app/fffffffflag
346 | /app/ffffffffflag
347 | /app/ffl4g
348 | /app/fffl4g
349 | /app/ffffl4g
350 | /app/ffffl4g
351 | /app/fffffl4g
352 | /app/ffffffl4g
353 | /app/fffffffl4g
354 | /app/ffffffffl4g
355 | /app/fffffffffl4g
356 | /app/this_is_flag
357 | /app/this_is_flag.txt
358 | /app/this_Is_Flag
359 | /app/th1s_1s_fl4g
360 | /app/this_1s_fl4g
361 | /app/this_1s_Fl4g
362 | /app/This_is_flag
363 | /app/Th1s_1s_fl4g
364 | /app/Th1s_1s_Flag
365 | /app/Th1s_1s_Fl4g
366 | /app/flag_is_here
367 | /app/Flag_is_here
368 | /app/flag_is_here.txt
369 | /app/readflag
370 | /www/flag
371 | /www/flag.txt
372 | /www/f1ag
373 | /www/fl4g
374 | /www/f14g
375 | /www/Flag
376 | /www/F1ag
377 | /www/F14g
378 | /www/Fl4g
379 | /www/fflag
380 | /www/ffflag
381 | /www/fffflag
382 | /www/fffflag
383 | /www/ffffflag
384 | /www/fffffflag
385 | /www/ffffffflag
386 | /www/fffffffflag
387 | /www/ffffffffflag
388 | /www/ffl4g
389 | /www/fffl4g
390 | /www/ffffl4g
391 | /www/ffffl4g
392 | /www/fffffl4g
393 | /www/ffffffl4g
394 | /www/fffffffl4g
395 | /www/ffffffffl4g
396 | /www/fffffffffl4g
397 | /www/this_is_flag
398 | /www/this_is_flag.txt
399 | /www/this_Is_Flag
400 | /www/th1s_1s_fl4g
401 | /www/this_1s_fl4g
402 | /www/this_1s_Fl4g
403 | /www/This_is_flag
404 | /www/Th1s_1s_fl4g
405 | /www/Th1s_1s_Flag
406 | /www/Th1s_1s_Fl4g
407 | /www/flag_is_here
408 | /www/Flag_is_here
409 | /www/flag_is_here.txt
410 | /www/readflag
411 | /proc/self/cwd/flag
412 | /proc/self/cwd/flag.txt
413 | /proc/self/cwd/f1ag
414 | /proc/self/cwd/fl4g
415 | /proc/self/cwd/f14g
416 | /proc/self/cwd/Flag
417 | /proc/self/cwd/F1ag
418 | /proc/self/cwd/F14g
419 | /proc/self/cwd/Fl4g
420 | /proc/self/cwd/fflag
421 | /proc/self/cwd/ffflag
422 | /proc/self/cwd/fffflag
423 | /proc/self/cwd/fffflag
424 | /proc/self/cwd/ffffflag
425 | /proc/self/cwd/fffffflag
426 | /proc/self/cwd/ffffffflag
427 | /proc/self/cwd/fffffffflag
428 | /proc/self/cwd/ffffffffflag
429 | /proc/self/cwd/ffl4g
430 | /proc/self/cwd/fffl4g
431 | /proc/self/cwd/ffffl4g
432 | /proc/self/cwd/ffffl4g
433 | /proc/self/cwd/fffffl4g
434 | /proc/self/cwd/ffffffl4g
435 | /proc/self/cwd/fffffffl4g
436 | /proc/self/cwd/ffffffffl4g
437 | /proc/self/cwd/fffffffffl4g
438 | /proc/self/cwd/this_is_flag
439 | /proc/self/cwd/this_is_flag.txt
440 | /proc/self/cwd/this_Is_Flag
441 | /proc/self/cwd/th1s_1s_fl4g
442 | /proc/self/cwd/this_1s_fl4g
443 | /proc/self/cwd/this_1s_Fl4g
444 | /proc/self/cwd/This_is_flag
445 | /proc/self/cwd/Th1s_1s_fl4g
446 | /proc/self/cwd/Th1s_1s_Flag
447 | /proc/self/cwd/Th1s_1s_Fl4g
448 | /proc/self/cwd/flag_is_here
449 | /proc/self/cwd/Flag_is_here
450 | /proc/self/cwd/flag_is_here.txt
451 | /proc/self/cwd/readflag
452 | /root/flag
453 | /root/flag.txt
454 | /root/f1ag
455 | /root/fl4g
456 | /root/f14g
457 | /root/Flag
458 | /root/F1ag
459 | /root/F14g
460 | /root/Fl4g
461 | /root/fflag
462 | /root/ffflag
463 | /root/fffflag
464 | /root/fffflag
465 | /root/ffffflag
466 | /root/fffffflag
467 | /root/ffffffflag
468 | /root/fffffffflag
469 | /root/ffffffffflag
470 | /root/ffl4g
471 | /root/fffl4g
472 | /root/ffffl4g
473 | /root/ffffl4g
474 | /root/fffffl4g
475 | /root/ffffffl4g
476 | /root/fffffffl4g
477 | /root/ffffffffl4g
478 | /root/fffffffffl4g
479 | /root/this_is_flag
480 | /root/this_is_flag.txt
481 | /root/this_Is_Flag
482 | /root/th1s_1s_fl4g
483 | /root/this_1s_fl4g
484 | /root/this_1s_Fl4g
485 | /root/This_is_flag
486 | /root/Th1s_1s_fl4g
487 | /root/Th1s_1s_Flag
488 | /root/Th1s_1s_Fl4g
489 | /root/flag_is_here
490 | /root/Flag_is_here
491 | /root/flag_is_here.txt
492 | /root/readflag
493 | /app/app/flag
494 | /app/app/flag.txt
495 | /app/app/f1ag
496 | /app/app/fl4g
497 | /app/app/f14g
498 | /app/app/Flag
499 | /app/app/F1ag
500 | /app/app/F14g
501 | /app/app/Fl4g
502 | /app/app/fflag
503 | /app/app/ffflag
504 | /app/app/fffflag
505 | /app/app/fffflag
506 | /app/app/ffffflag
507 | /app/app/fffffflag
508 | /app/app/ffffffflag
509 | /app/app/fffffffflag
510 | /app/app/ffffffffflag
511 | /app/app/ffl4g
512 | /app/app/fffl4g
513 | /app/app/ffffl4g
514 | /app/app/ffffl4g
515 | /app/app/fffffl4g
516 | /app/app/ffffffl4g
517 | /app/app/fffffffl4g
518 | /app/app/ffffffffl4g
519 | /app/app/fffffffffl4g
520 | /app/app/this_is_flag
521 | /app/app/this_is_flag.txt
522 | /app/app/this_Is_Flag
523 | /app/app/th1s_1s_fl4g
524 | /app/app/this_1s_fl4g
525 | /app/app/this_1s_Fl4g
526 | /app/app/This_is_flag
527 | /app/app/Th1s_1s_fl4g
528 | /app/app/Th1s_1s_Flag
529 | /app/app/Th1s_1s_Fl4g
530 | /app/app/flag_is_here
531 | /app/app/Flag_is_here
532 | /app/app/flag_is_here.txt
533 | /app/app/readflag
534 | /www/wwwroot/flag
535 | /www/wwwroot/flag.txt
536 | /www/wwwroot/f1ag
537 | /www/wwwroot/fl4g
538 | /www/wwwroot/f14g
539 | /www/wwwroot/Flag
540 | /www/wwwroot/F1ag
541 | /www/wwwroot/F14g
542 | /www/wwwroot/Fl4g
543 | /www/wwwroot/fflag
544 | /www/wwwroot/ffflag
545 | /www/wwwroot/fffflag
546 | /www/wwwroot/fffflag
547 | /www/wwwroot/ffffflag
548 | /www/wwwroot/fffffflag
549 | /www/wwwroot/ffffffflag
550 | /www/wwwroot/fffffffflag
551 | /www/wwwroot/ffffffffflag
552 | /www/wwwroot/ffl4g
553 | /www/wwwroot/fffl4g
554 | /www/wwwroot/ffffl4g
555 | /www/wwwroot/ffffl4g
556 | /www/wwwroot/fffffl4g
557 | /www/wwwroot/ffffffl4g
558 | /www/wwwroot/fffffffl4g
559 | /www/wwwroot/ffffffffl4g
560 | /www/wwwroot/fffffffffl4g
561 | /www/wwwroot/this_is_flag
562 | /www/wwwroot/this_is_flag.txt
563 | /www/wwwroot/this_Is_Flag
564 | /www/wwwroot/th1s_1s_fl4g
565 | /www/wwwroot/this_1s_fl4g
566 | /www/wwwroot/this_1s_Fl4g
567 | /www/wwwroot/This_is_flag
568 | /www/wwwroot/Th1s_1s_fl4g
569 | /www/wwwroot/Th1s_1s_Flag
570 | /www/wwwroot/Th1s_1s_Fl4g
571 | /www/wwwroot/flag_is_here
572 | /www/wwwroot/Flag_is_here
573 | /www/wwwroot/flag_is_here.txt
574 | /www/wwwroot/readflag
575 | /usr/share/nginx/html/flag
576 | /usr/share/nginx/html/flag.txt
577 | /usr/share/nginx/html/f1ag
578 | /usr/share/nginx/html/fl4g
579 | /usr/share/nginx/html/f14g
580 | /usr/share/nginx/html/Flag
581 | /usr/share/nginx/html/F1ag
582 | /usr/share/nginx/html/F14g
583 | /usr/share/nginx/html/Fl4g
584 | /usr/share/nginx/html/fflag
585 | /usr/share/nginx/html/ffflag
586 | /usr/share/nginx/html/fffflag
587 | /usr/share/nginx/html/fffflag
588 | /usr/share/nginx/html/ffffflag
589 | /usr/share/nginx/html/fffffflag
590 | /usr/share/nginx/html/ffffffflag
591 | /usr/share/nginx/html/fffffffflag
592 | /usr/share/nginx/html/ffffffffflag
593 | /usr/share/nginx/html/ffl4g
594 | /usr/share/nginx/html/fffl4g
595 | /usr/share/nginx/html/ffffl4g
596 | /usr/share/nginx/html/ffffl4g
597 | /usr/share/nginx/html/fffffl4g
598 | /usr/share/nginx/html/ffffffl4g
599 | /usr/share/nginx/html/fffffffl4g
600 | /usr/share/nginx/html/ffffffffl4g
601 | /usr/share/nginx/html/fffffffffl4g
602 | /usr/share/nginx/html/this_is_flag
603 | /usr/share/nginx/html/this_is_flag.txt
604 | /usr/share/nginx/html/this_Is_Flag
605 | /usr/share/nginx/html/th1s_1s_fl4g
606 | /usr/share/nginx/html/this_1s_fl4g
607 | /usr/share/nginx/html/this_1s_Fl4g
608 | /usr/share/nginx/html/This_is_flag
609 | /usr/share/nginx/html/Th1s_1s_fl4g
610 | /usr/share/nginx/html/Th1s_1s_Flag
611 | /usr/share/nginx/html/Th1s_1s_Fl4g
612 | /usr/share/nginx/html/flag_is_here
613 | /usr/share/nginx/html/Flag_is_here
614 | /usr/share/nginx/html/flag_is_here.txt
615 | /usr/share/nginx/html/readflag
616 | 


--------------------------------------------------------------------------------
/flag_file/README.md:
--------------------------------------------------------------------------------
1 | # flag_file
2 | 用于生成 flag fuzz文件的脚本
3 | path.txt是路径字典
4 | flag.txt是flag文件字典
5 | 
6 | 脚本会把每个flag和每个路径匹配一次生成 flag_file.txt文件
7 | 可以根据自己的需求替换
8 | 


--------------------------------------------------------------------------------
/flag_file/exp.py:
--------------------------------------------------------------------------------
 1 | pathlist = []
 2 | flaglist = []
 3 | with open("path.txt") as paths:
 4 |     for path in paths.readlines():
 5 |         pathlist.append(path.strip())
 6 | with open("flag.txt") as flags:
 7 |     for flag in flags.readlines():
 8 |         flaglist.append(flag.strip())
 9 | print(pathlist)
10 | print(flaglist)
11 | with open("flag_file.txt","w") as flag_file:
12 |     for path in pathlist:
13 |         for flag in flaglist:
14 |             flag_file.write(path+flag+"\n")
15 | 


--------------------------------------------------------------------------------
/flag_file/flag.txt:
--------------------------------------------------------------------------------
 1 | flag
 2 | flag.txt
 3 | f1ag
 4 | fl4g
 5 | f14g
 6 | Flag
 7 | F1ag
 8 | F14g
 9 | Fl4g
10 | fflag
11 | ffflag
12 | fffflag
13 | fffflag
14 | ffffflag
15 | fffffflag
16 | ffffffflag
17 | fffffffflag
18 | ffffffffflag
19 | ffl4g
20 | fffl4g
21 | ffffl4g
22 | ffffl4g
23 | fffffl4g
24 | ffffffl4g
25 | fffffffl4g
26 | ffffffffl4g
27 | fffffffffl4g
28 | this_is_flag
29 | this_Is_Flag
30 | th1s_1s_fl4g
31 | this_1s_fl4g
32 | this_1s_Fl4g
33 | This_is_flag
34 | Th1s_1s_fl4g
35 | Th1s_1s_Flag
36 | Th1s_1s_Fl4g
37 | readflag
38 | 


--------------------------------------------------------------------------------
/flag_file/flag_file.txt:
--------------------------------------------------------------------------------
  1 | /flag
  2 | /flag.txt
  3 | /f1ag
  4 | /fl4g
  5 | /f14g
  6 | /Flag
  7 | /F1ag
  8 | /F14g
  9 | /Fl4g
 10 | /fflag
 11 | /ffflag
 12 | /fffflag
 13 | /fffflag
 14 | /ffffflag
 15 | /fffffflag
 16 | /ffffffflag
 17 | /fffffffflag
 18 | /ffffffffflag
 19 | /ffl4g
 20 | /fffl4g
 21 | /ffffl4g
 22 | /ffffl4g
 23 | /fffffl4g
 24 | /ffffffl4g
 25 | /fffffffl4g
 26 | /ffffffffl4g
 27 | /fffffffffl4g
 28 | /this_is_flag
 29 | /this_is_flag.txt
 30 | /this_Is_Flag
 31 | /th1s_1s_fl4g
 32 | /this_1s_fl4g
 33 | /this_1s_Fl4g
 34 | /This_is_flag
 35 | /Th1s_1s_fl4g
 36 | /Th1s_1s_Flag
 37 | /Th1s_1s_Fl4g
 38 | /flag_is_here
 39 | /Flag_is_here
 40 | /flag_is_here.txt
 41 | /readflag
 42 | /usr/flag
 43 | /usr/flag.txt
 44 | /usr/f1ag
 45 | /usr/fl4g
 46 | /usr/f14g
 47 | /usr/Flag
 48 | /usr/F1ag
 49 | /usr/F14g
 50 | /usr/Fl4g
 51 | /usr/fflag
 52 | /usr/ffflag
 53 | /usr/fffflag
 54 | /usr/fffflag
 55 | /usr/ffffflag
 56 | /usr/fffffflag
 57 | /usr/ffffffflag
 58 | /usr/fffffffflag
 59 | /usr/ffffffffflag
 60 | /usr/ffl4g
 61 | /usr/fffl4g
 62 | /usr/ffffl4g
 63 | /usr/ffffl4g
 64 | /usr/fffffl4g
 65 | /usr/ffffffl4g
 66 | /usr/fffffffl4g
 67 | /usr/ffffffffl4g
 68 | /usr/fffffffffl4g
 69 | /usr/this_is_flag
 70 | /usr/this_is_flag.txt
 71 | /usr/this_Is_Flag
 72 | /usr/th1s_1s_fl4g
 73 | /usr/this_1s_fl4g
 74 | /usr/this_1s_Fl4g
 75 | /usr/This_is_flag
 76 | /usr/Th1s_1s_fl4g
 77 | /usr/Th1s_1s_Flag
 78 | /usr/Th1s_1s_Fl4g
 79 | /usr/flag_is_here
 80 | /usr/Flag_is_here
 81 | /usr/flag_is_here.txt
 82 | /usr/readflag
 83 | /home/flag
 84 | /home/flag.txt
 85 | /home/f1ag
 86 | /home/fl4g
 87 | /home/f14g
 88 | /home/Flag
 89 | /home/F1ag
 90 | /home/F14g
 91 | /home/Fl4g
 92 | /home/fflag
 93 | /home/ffflag
 94 | /home/fffflag
 95 | /home/fffflag
 96 | /home/ffffflag
 97 | /home/fffffflag
 98 | /home/ffffffflag
 99 | /home/fffffffflag
100 | /home/ffffffffflag
101 | /home/ffl4g
102 | /home/fffl4g
103 | /home/ffffl4g
104 | /home/ffffl4g
105 | /home/fffffl4g
106 | /home/ffffffl4g
107 | /home/fffffffl4g
108 | /home/ffffffffl4g
109 | /home/fffffffffl4g
110 | /home/this_is_flag
111 | /home/this_is_flag.txt
112 | /home/this_Is_Flag
113 | /home/th1s_1s_fl4g
114 | /home/this_1s_fl4g
115 | /home/this_1s_Fl4g
116 | /home/This_is_flag
117 | /home/Th1s_1s_fl4g
118 | /home/Th1s_1s_Flag
119 | /home/Th1s_1s_Fl4g
120 | /home/flag_is_here
121 | /home/Flag_is_here
122 | /home/flag_is_here.txt
123 | /home/readflag
124 | /var/flag
125 | /var/flag.txt
126 | /var/f1ag
127 | /var/fl4g
128 | /var/f14g
129 | /var/Flag
130 | /var/F1ag
131 | /var/F14g
132 | /var/Fl4g
133 | /var/fflag
134 | /var/ffflag
135 | /var/fffflag
136 | /var/fffflag
137 | /var/ffffflag
138 | /var/fffffflag
139 | /var/ffffffflag
140 | /var/fffffffflag
141 | /var/ffffffffflag
142 | /var/ffl4g
143 | /var/fffl4g
144 | /var/ffffl4g
145 | /var/ffffl4g
146 | /var/fffffl4g
147 | /var/ffffffl4g
148 | /var/fffffffl4g
149 | /var/ffffffffl4g
150 | /var/fffffffffl4g
151 | /var/this_is_flag
152 | /var/this_is_flag.txt
153 | /var/this_Is_Flag
154 | /var/th1s_1s_fl4g
155 | /var/this_1s_fl4g
156 | /var/this_1s_Fl4g
157 | /var/This_is_flag
158 | /var/Th1s_1s_fl4g
159 | /var/Th1s_1s_Flag
160 | /var/Th1s_1s_Fl4g
161 | /var/flag_is_here
162 | /var/Flag_is_here
163 | /var/flag_is_here.txt
164 | /var/readflag
165 | /tmp/flag
166 | /tmp/flag.txt
167 | /tmp/f1ag
168 | /tmp/fl4g
169 | /tmp/f14g
170 | /tmp/Flag
171 | /tmp/F1ag
172 | /tmp/F14g
173 | /tmp/Fl4g
174 | /tmp/fflag
175 | /tmp/ffflag
176 | /tmp/fffflag
177 | /tmp/fffflag
178 | /tmp/ffffflag
179 | /tmp/fffffflag
180 | /tmp/ffffffflag
181 | /tmp/fffffffflag
182 | /tmp/ffffffffflag
183 | /tmp/ffl4g
184 | /tmp/fffl4g
185 | /tmp/ffffl4g
186 | /tmp/ffffl4g
187 | /tmp/fffffl4g
188 | /tmp/ffffffl4g
189 | /tmp/fffffffl4g
190 | /tmp/ffffffffl4g
191 | /tmp/fffffffffl4g
192 | /tmp/this_is_flag
193 | /tmp/this_is_flag.txt
194 | /tmp/this_Is_Flag
195 | /tmp/th1s_1s_fl4g
196 | /tmp/this_1s_fl4g
197 | /tmp/this_1s_Fl4g
198 | /tmp/This_is_flag
199 | /tmp/Th1s_1s_fl4g
200 | /tmp/Th1s_1s_Flag
201 | /tmp/Th1s_1s_Fl4g
202 | /tmp/flag_is_here
203 | /tmp/Flag_is_here
204 | /tmp/flag_is_here.txt
205 | /tmp/readflag
206 | /var/tmp/flag
207 | /var/tmp/flag.txt
208 | /var/tmp/f1ag
209 | /var/tmp/fl4g
210 | /var/tmp/f14g
211 | /var/tmp/Flag
212 | /var/tmp/F1ag
213 | /var/tmp/F14g
214 | /var/tmp/Fl4g
215 | /var/tmp/fflag
216 | /var/tmp/ffflag
217 | /var/tmp/fffflag
218 | /var/tmp/fffflag
219 | /var/tmp/ffffflag
220 | /var/tmp/fffffflag
221 | /var/tmp/ffffffflag
222 | /var/tmp/fffffffflag
223 | /var/tmp/ffffffffflag
224 | /var/tmp/ffl4g
225 | /var/tmp/fffl4g
226 | /var/tmp/ffffl4g
227 | /var/tmp/ffffl4g
228 | /var/tmp/fffffl4g
229 | /var/tmp/ffffffl4g
230 | /var/tmp/fffffffl4g
231 | /var/tmp/ffffffffl4g
232 | /var/tmp/fffffffffl4g
233 | /var/tmp/this_is_flag
234 | /var/tmp/this_is_flag.txt
235 | /var/tmp/this_Is_Flag
236 | /var/tmp/th1s_1s_fl4g
237 | /var/tmp/this_1s_fl4g
238 | /var/tmp/this_1s_Fl4g
239 | /var/tmp/This_is_flag
240 | /var/tmp/Th1s_1s_fl4g
241 | /var/tmp/Th1s_1s_Flag
242 | /var/tmp/Th1s_1s_Fl4g
243 | /var/tmp/flag_is_here
244 | /var/tmp/Flag_is_here
245 | /var/tmp/flag_is_here.txt
246 | /var/tmp/readflag
247 | /var/www/flag
248 | /var/www/flag.txt
249 | /var/www/f1ag
250 | /var/www/fl4g
251 | /var/www/f14g
252 | /var/www/Flag
253 | /var/www/F1ag
254 | /var/www/F14g
255 | /var/www/Fl4g
256 | /var/www/fflag
257 | /var/www/ffflag
258 | /var/www/fffflag
259 | /var/www/fffflag
260 | /var/www/ffffflag
261 | /var/www/fffffflag
262 | /var/www/ffffffflag
263 | /var/www/fffffffflag
264 | /var/www/ffffffffflag
265 | /var/www/ffl4g
266 | /var/www/fffl4g
267 | /var/www/ffffl4g
268 | /var/www/ffffl4g
269 | /var/www/fffffl4g
270 | /var/www/ffffffl4g
271 | /var/www/fffffffl4g
272 | /var/www/ffffffffl4g
273 | /var/www/fffffffffl4g
274 | /var/www/this_is_flag
275 | /var/www/this_is_flag.txt
276 | /var/www/this_Is_Flag
277 | /var/www/th1s_1s_fl4g
278 | /var/www/this_1s_fl4g
279 | /var/www/this_1s_Fl4g
280 | /var/www/This_is_flag
281 | /var/www/Th1s_1s_fl4g
282 | /var/www/Th1s_1s_Flag
283 | /var/www/Th1s_1s_Fl4g
284 | /var/www/flag_is_here
285 | /var/www/Flag_is_here
286 | /var/www/flag_is_here.txt
287 | /var/www/readflag
288 | /var/www/html/flag
289 | /var/www/html/flag.txt
290 | /var/www/html/f1ag
291 | /var/www/html/fl4g
292 | /var/www/html/f14g
293 | /var/www/html/Flag
294 | /var/www/html/F1ag
295 | /var/www/html/F14g
296 | /var/www/html/Fl4g
297 | /var/www/html/fflag
298 | /var/www/html/ffflag
299 | /var/www/html/fffflag
300 | /var/www/html/fffflag
301 | /var/www/html/ffffflag
302 | /var/www/html/fffffflag
303 | /var/www/html/ffffffflag
304 | /var/www/html/fffffffflag
305 | /var/www/html/ffffffffflag
306 | /var/www/html/ffl4g
307 | /var/www/html/fffl4g
308 | /var/www/html/ffffl4g
309 | /var/www/html/ffffl4g
310 | /var/www/html/fffffl4g
311 | /var/www/html/ffffffl4g
312 | /var/www/html/fffffffl4g
313 | /var/www/html/ffffffffl4g
314 | /var/www/html/fffffffffl4g
315 | /var/www/html/this_is_flag
316 | /var/www/html/this_is_flag.txt
317 | /var/www/html/this_Is_Flag
318 | /var/www/html/th1s_1s_fl4g
319 | /var/www/html/this_1s_fl4g
320 | /var/www/html/this_1s_Fl4g
321 | /var/www/html/This_is_flag
322 | /var/www/html/Th1s_1s_fl4g
323 | /var/www/html/Th1s_1s_Flag
324 | /var/www/html/Th1s_1s_Fl4g
325 | /var/www/html/flag_is_here
326 | /var/www/html/Flag_is_here
327 | /var/www/html/flag_is_here.txt
328 | /var/www/html/readflag
329 | /app/flag
330 | /app/flag.txt
331 | /app/f1ag
332 | /app/fl4g
333 | /app/f14g
334 | /app/Flag
335 | /app/F1ag
336 | /app/F14g
337 | /app/Fl4g
338 | /app/fflag
339 | /app/ffflag
340 | /app/fffflag
341 | /app/fffflag
342 | /app/ffffflag
343 | /app/fffffflag
344 | /app/ffffffflag
345 | /app/fffffffflag
346 | /app/ffffffffflag
347 | /app/ffl4g
348 | /app/fffl4g
349 | /app/ffffl4g
350 | /app/ffffl4g
351 | /app/fffffl4g
352 | /app/ffffffl4g
353 | /app/fffffffl4g
354 | /app/ffffffffl4g
355 | /app/fffffffffl4g
356 | /app/this_is_flag
357 | /app/this_is_flag.txt
358 | /app/this_Is_Flag
359 | /app/th1s_1s_fl4g
360 | /app/this_1s_fl4g
361 | /app/this_1s_Fl4g
362 | /app/This_is_flag
363 | /app/Th1s_1s_fl4g
364 | /app/Th1s_1s_Flag
365 | /app/Th1s_1s_Fl4g
366 | /app/flag_is_here
367 | /app/Flag_is_here
368 | /app/flag_is_here.txt
369 | /app/readflag
370 | /www/flag
371 | /www/flag.txt
372 | /www/f1ag
373 | /www/fl4g
374 | /www/f14g
375 | /www/Flag
376 | /www/F1ag
377 | /www/F14g
378 | /www/Fl4g
379 | /www/fflag
380 | /www/ffflag
381 | /www/fffflag
382 | /www/fffflag
383 | /www/ffffflag
384 | /www/fffffflag
385 | /www/ffffffflag
386 | /www/fffffffflag
387 | /www/ffffffffflag
388 | /www/ffl4g
389 | /www/fffl4g
390 | /www/ffffl4g
391 | /www/ffffl4g
392 | /www/fffffl4g
393 | /www/ffffffl4g
394 | /www/fffffffl4g
395 | /www/ffffffffl4g
396 | /www/fffffffffl4g
397 | /www/this_is_flag
398 | /www/this_is_flag.txt
399 | /www/this_Is_Flag
400 | /www/th1s_1s_fl4g
401 | /www/this_1s_fl4g
402 | /www/this_1s_Fl4g
403 | /www/This_is_flag
404 | /www/Th1s_1s_fl4g
405 | /www/Th1s_1s_Flag
406 | /www/Th1s_1s_Fl4g
407 | /www/flag_is_here
408 | /www/Flag_is_here
409 | /www/flag_is_here.txt
410 | /www/readflag
411 | /proc/self/cwd/flag
412 | /proc/self/cwd/flag.txt
413 | /proc/self/cwd/f1ag
414 | /proc/self/cwd/fl4g
415 | /proc/self/cwd/f14g
416 | /proc/self/cwd/Flag
417 | /proc/self/cwd/F1ag
418 | /proc/self/cwd/F14g
419 | /proc/self/cwd/Fl4g
420 | /proc/self/cwd/fflag
421 | /proc/self/cwd/ffflag
422 | /proc/self/cwd/fffflag
423 | /proc/self/cwd/fffflag
424 | /proc/self/cwd/ffffflag
425 | /proc/self/cwd/fffffflag
426 | /proc/self/cwd/ffffffflag
427 | /proc/self/cwd/fffffffflag
428 | /proc/self/cwd/ffffffffflag
429 | /proc/self/cwd/ffl4g
430 | /proc/self/cwd/fffl4g
431 | /proc/self/cwd/ffffl4g
432 | /proc/self/cwd/ffffl4g
433 | /proc/self/cwd/fffffl4g
434 | /proc/self/cwd/ffffffl4g
435 | /proc/self/cwd/fffffffl4g
436 | /proc/self/cwd/ffffffffl4g
437 | /proc/self/cwd/fffffffffl4g
438 | /proc/self/cwd/this_is_flag
439 | /proc/self/cwd/this_is_flag.txt
440 | /proc/self/cwd/this_Is_Flag
441 | /proc/self/cwd/th1s_1s_fl4g
442 | /proc/self/cwd/this_1s_fl4g
443 | /proc/self/cwd/this_1s_Fl4g
444 | /proc/self/cwd/This_is_flag
445 | /proc/self/cwd/Th1s_1s_fl4g
446 | /proc/self/cwd/Th1s_1s_Flag
447 | /proc/self/cwd/Th1s_1s_Fl4g
448 | /proc/self/cwd/flag_is_here
449 | /proc/self/cwd/Flag_is_here
450 | /proc/self/cwd/flag_is_here.txt
451 | /proc/self/cwd/readflag
452 | /root/flag
453 | /root/flag.txt
454 | /root/f1ag
455 | /root/fl4g
456 | /root/f14g
457 | /root/Flag
458 | /root/F1ag
459 | /root/F14g
460 | /root/Fl4g
461 | /root/fflag
462 | /root/ffflag
463 | /root/fffflag
464 | /root/fffflag
465 | /root/ffffflag
466 | /root/fffffflag
467 | /root/ffffffflag
468 | /root/fffffffflag
469 | /root/ffffffffflag
470 | /root/ffl4g
471 | /root/fffl4g
472 | /root/ffffl4g
473 | /root/ffffl4g
474 | /root/fffffl4g
475 | /root/ffffffl4g
476 | /root/fffffffl4g
477 | /root/ffffffffl4g
478 | /root/fffffffffl4g
479 | /root/this_is_flag
480 | /root/this_is_flag.txt
481 | /root/this_Is_Flag
482 | /root/th1s_1s_fl4g
483 | /root/this_1s_fl4g
484 | /root/this_1s_Fl4g
485 | /root/This_is_flag
486 | /root/Th1s_1s_fl4g
487 | /root/Th1s_1s_Flag
488 | /root/Th1s_1s_Fl4g
489 | /root/flag_is_here
490 | /root/Flag_is_here
491 | /root/flag_is_here.txt
492 | /root/readflag
493 | /app/app/flag
494 | /app/app/flag.txt
495 | /app/app/f1ag
496 | /app/app/fl4g
497 | /app/app/f14g
498 | /app/app/Flag
499 | /app/app/F1ag
500 | /app/app/F14g
501 | /app/app/Fl4g
502 | /app/app/fflag
503 | /app/app/ffflag
504 | /app/app/fffflag
505 | /app/app/fffflag
506 | /app/app/ffffflag
507 | /app/app/fffffflag
508 | /app/app/ffffffflag
509 | /app/app/fffffffflag
510 | /app/app/ffffffffflag
511 | /app/app/ffl4g
512 | /app/app/fffl4g
513 | /app/app/ffffl4g
514 | /app/app/ffffl4g
515 | /app/app/fffffl4g
516 | /app/app/ffffffl4g
517 | /app/app/fffffffl4g
518 | /app/app/ffffffffl4g
519 | /app/app/fffffffffl4g
520 | /app/app/this_is_flag
521 | /app/app/this_is_flag.txt
522 | /app/app/this_Is_Flag
523 | /app/app/th1s_1s_fl4g
524 | /app/app/this_1s_fl4g
525 | /app/app/this_1s_Fl4g
526 | /app/app/This_is_flag
527 | /app/app/Th1s_1s_fl4g
528 | /app/app/Th1s_1s_Flag
529 | /app/app/Th1s_1s_Fl4g
530 | /app/app/flag_is_here
531 | /app/app/Flag_is_here
532 | /app/app/flag_is_here.txt
533 | /app/app/readflag
534 | /www/wwwroot/flag
535 | /www/wwwroot/flag.txt
536 | /www/wwwroot/f1ag
537 | /www/wwwroot/fl4g
538 | /www/wwwroot/f14g
539 | /www/wwwroot/Flag
540 | /www/wwwroot/F1ag
541 | /www/wwwroot/F14g
542 | /www/wwwroot/Fl4g
543 | /www/wwwroot/fflag
544 | /www/wwwroot/ffflag
545 | /www/wwwroot/fffflag
546 | /www/wwwroot/fffflag
547 | /www/wwwroot/ffffflag
548 | /www/wwwroot/fffffflag
549 | /www/wwwroot/ffffffflag
550 | /www/wwwroot/fffffffflag
551 | /www/wwwroot/ffffffffflag
552 | /www/wwwroot/ffl4g
553 | /www/wwwroot/fffl4g
554 | /www/wwwroot/ffffl4g
555 | /www/wwwroot/ffffl4g
556 | /www/wwwroot/fffffl4g
557 | /www/wwwroot/ffffffl4g
558 | /www/wwwroot/fffffffl4g
559 | /www/wwwroot/ffffffffl4g
560 | /www/wwwroot/fffffffffl4g
561 | /www/wwwroot/this_is_flag
562 | /www/wwwroot/this_is_flag.txt
563 | /www/wwwroot/this_Is_Flag
564 | /www/wwwroot/th1s_1s_fl4g
565 | /www/wwwroot/this_1s_fl4g
566 | /www/wwwroot/this_1s_Fl4g
567 | /www/wwwroot/This_is_flag
568 | /www/wwwroot/Th1s_1s_fl4g
569 | /www/wwwroot/Th1s_1s_Flag
570 | /www/wwwroot/Th1s_1s_Fl4g
571 | /www/wwwroot/flag_is_here
572 | /www/wwwroot/Flag_is_here
573 | /www/wwwroot/flag_is_here.txt
574 | /www/wwwroot/readflag
575 | /usr/share/nginx/html/flag
576 | /usr/share/nginx/html/flag.txt
577 | /usr/share/nginx/html/f1ag
578 | /usr/share/nginx/html/fl4g
579 | /usr/share/nginx/html/f14g
580 | /usr/share/nginx/html/Flag
581 | /usr/share/nginx/html/F1ag
582 | /usr/share/nginx/html/F14g
583 | /usr/share/nginx/html/Fl4g
584 | /usr/share/nginx/html/fflag
585 | /usr/share/nginx/html/ffflag
586 | /usr/share/nginx/html/fffflag
587 | /usr/share/nginx/html/fffflag
588 | /usr/share/nginx/html/ffffflag
589 | /usr/share/nginx/html/fffffflag
590 | /usr/share/nginx/html/ffffffflag
591 | /usr/share/nginx/html/fffffffflag
592 | /usr/share/nginx/html/ffffffffflag
593 | /usr/share/nginx/html/ffl4g
594 | /usr/share/nginx/html/fffl4g
595 | /usr/share/nginx/html/ffffl4g
596 | /usr/share/nginx/html/ffffl4g
597 | /usr/share/nginx/html/fffffl4g
598 | /usr/share/nginx/html/ffffffl4g
599 | /usr/share/nginx/html/fffffffl4g
600 | /usr/share/nginx/html/ffffffffl4g
601 | /usr/share/nginx/html/fffffffffl4g
602 | /usr/share/nginx/html/this_is_flag
603 | /usr/share/nginx/html/this_is_flag.txt
604 | /usr/share/nginx/html/this_Is_Flag
605 | /usr/share/nginx/html/th1s_1s_fl4g
606 | /usr/share/nginx/html/this_1s_fl4g
607 | /usr/share/nginx/html/this_1s_Fl4g
608 | /usr/share/nginx/html/This_is_flag
609 | /usr/share/nginx/html/Th1s_1s_fl4g
610 | /usr/share/nginx/html/Th1s_1s_Flag
611 | /usr/share/nginx/html/Th1s_1s_Fl4g
612 | /usr/share/nginx/html/flag_is_here
613 | /usr/share/nginx/html/Flag_is_here
614 | /usr/share/nginx/html/flag_is_here.txt
615 | /usr/share/nginx/html/readflag
616 | 


--------------------------------------------------------------------------------
/flag_file/path.txt:
--------------------------------------------------------------------------------
 1 | /
 2 | /usr/
 3 | /home/
 4 | /var/
 5 | /tmp/
 6 | /var/tmp/
 7 | /var/www/
 8 | /var/www/html/
 9 | /app/
10 | /www/
11 | /proc/self/cwd/
12 | /root/
13 | /app/app/
14 | /www/wwwroot/
15 | /usr/share/nginx/html/
16 | 


--------------------------------------------------------------------------------
/php_file.txt:
--------------------------------------------------------------------------------
  1 | /data/www/index.html
  2 | /data/www/index.php
  3 | /web/html/index.php
  4 | /web/html/index.html
  5 | /home/www/htdocs
  6 | /home/www/htdocs/index.html
  7 | /home/www/htdocs/index.php
  8 | /home/wwwroot/default/index.html
  9 | /home/wwwroot/default/index.php
 10 | /var/www/index.php
 11 | /var/www/index.html
 12 | /var/www/htdocs/index.php
 13 | /var/www/htdocs/index.html
 14 | /var/www/html/index.html
 15 | /var/www/html/index.php
 16 | /var/www/html/ssrf/index.php
 17 | /var/www/html/ssrf/ssrf.php
 18 | /var/www/ssrf/index.php
 19 | /var/www/ssrf/ssrf.php
 20 | /var/www/html/xxe/index.php
 21 | /var/www/html/xxe/xxe.php
 22 | /var/www/xxe/index.php
 23 | /var/www/xxe/xxe.php
 24 | /www/index.php
 25 | /www/index.html
 26 | /web/index.php
 27 | /web/index.html
 28 | 
 29 | /etc/apache2/apache2.conf
 30 | /etc/apache2/conf-available/docker-php.conf
 31 | /etc/apache2/conf-enabled/docker-php.conf
 32 | /etc/apache2/httpd.conf
 33 | /etc/apache2/ports.conf
 34 | /etc/apache2/sites-available/000-default.conf
 35 | /etc/apache2/sites-enabled/000-default.conf
 36 | /etc/httpd/conf/httpd.conf
 37 | /etc/httpd/conf.d/php.conf
 38 | /etc/my.cnf
 39 | /etc/nginx/nginx.conf
 40 | /etc/nginx/conf.d/error2.conf
 41 | /etc/nginx/conf.d/default
 42 | /etc/nginx/sites-enabled/default
 43 | /etc/nginx/sites-available/default
 44 | /etc/php.ini
 45 | /etc/php/php.ini
 46 | /etc/php5/apache2/php.ini
 47 | /etc/php5/fpm/conf.d
 48 | /etc/php5/fpm/php.ini
 49 | /etc/php5/fpm/pool.d/www.conf
 50 | /etc/php/7.0/fpm/php-fpm.conf
 51 | /etc/php/7.1/fpm/php-fpm.conf
 52 | /etc/php/7.2/fpm/php-fpm.conf
 53 | /etc/php/7.3/fpm/php-fpm.conf
 54 | /etc/php/7.0/fpm/php.ini
 55 | /etc/php/7.1/fpm/php.ini
 56 | /etc/php/7.2/fpm/php.ini
 57 | /etc/php/7.3/fpm/php.ini
 58 | /etc/php/7.0/fpm/pool.d/www.conf
 59 | /etc/php/7.1/fpm/pool.d/www.conf
 60 | /etc/php/7.2/fpm/pool.d/www.conf
 61 | /etc/php/7.3/fpm/pool.d/www.conf
 62 | /home2/bin/stable/apache/php.ini
 63 | /NetServer/bin/stable/apache/php.ini
 64 | /usr/bin/php5/bin/php.ini
 65 | /usr/local/apache/conf/php.ini
 66 | /usr/local/apache/conf/httpd.conf
 67 | /usr/local/apache/conf/extra/httpd-vhost.conf
 68 | /usr/local/apache2/conf/extra/httpd-vhosts.conf
 69 | /usr/local/apache2/conf/httpd.conf
 70 | /usr/local/apache2/conf/php.ini
 71 | /usr/local/nginx/conf/nginx.conf
 72 | /usr/local/nginx/nginx.conf
 73 | /usr/local/nginx/conf.d/error2.conf
 74 | /usr/local/nginx/conf.d/default
 75 | /usr/local/nginx/sites-enabled/default
 76 | /usr/local/nginx/sites-available/default
 77 | /usr/local/lib/php.ini
 78 | /usr/local/mysql/my.cnf
 79 | /usr/local/php56/etc/php.ini
 80 | /usr/local/php56/etc/php-fpm.conf
 81 | /usr/share/lib/php.ini
 82 | /usr/share/mysql/my.cnf
 83 | /www/php/php.ini
 84 | /www/php4/php.ini
 85 | /www/php5/php.ini
 86 | /xampp/apache/bin/php.ini
 87 | /xampp/apache/conf/httpd.conf
 88 | 
 89 | /etc/httpd/logs/error_log
 90 | /etc/httpd/logs/error.log
 91 | /etc/httpd/logs/access_log
 92 | /home/www/logs/php-fpm.log
 93 | /var/log/apache2/error.log
 94 | /var/log/apache2/access.log
 95 | /var/log/access_log
 96 | /var/log/access.log
 97 | /var/log/error_log
 98 | /var/log/error.log
 99 | /var/log/mysql.log
100 | /var/log/mysqlderror.log
101 | /var/log/mysql/mysql.log
102 | /var/log/mysql/mysql-slow.log
103 | /var/mysql.log
104 | 
105 | /var/tmp/php-fpm.pid
106 | /.dockerenv
107 | /proc/self/cmdline
108 | /proc/self/environ
109 | 
110 | /app/app.py
111 | /app/main.py
112 | /app/uwsgi.ini
113 | /www/app.py
114 | /www/main.py
115 | /www/uwsgi.ini
116 | 


--------------------------------------------------------------------------------
/system_file.txt:
--------------------------------------------------------------------------------
  1 | /proc/sched_debug
  2 | /proc/mounts
  3 | /proc/net/arp
  4 | /proc/net/route
  5 | /proc/net/tcp
  6 | /proc/net/udp
  7 | /proc/net/fib_trie
  8 | /proc/version
  9 | /proc/self/cmdline
 10 | /proc/self/stat
 11 | /proc/self/status
 12 | /proc/self/environ
 13 | /proc/verison
 14 | /proc/cmdline
 15 | /proc/self/cwd
 16 | /proc/self/fd/0
 17 | /proc/self/fd/1
 18 | /proc/self/fd/2
 19 | /proc/self/fd/3
 20 | /proc/self/fd/4
 21 | /proc/self/fd/5
 22 | /proc/self/fd/6
 23 | /proc/self/fd/7
 24 | /proc/self/fd/8
 25 | /proc/self/fd/9
 26 | /proc/self/fd/10
 27 | /proc/self/fd/11
 28 | /proc/self/fd/12
 29 | /proc/self/fd/13
 30 | /proc/self/fd/14
 31 | /proc/self/fd/15
 32 | /proc/self/fd/16
 33 | /proc/self/fd/17
 34 | /proc/self/fd/18
 35 | /proc/self/fd/19
 36 | /proc/self/fd/20
 37 | /proc/self/fd/21
 38 | /proc/self/fd/22
 39 | /proc/self/fd/23
 40 | /proc/self/fd/24
 41 | /proc/self/fd/25
 42 | /proc/self/fd/26
 43 | /proc/self/fd/27
 44 | /proc/self/fd/28
 45 | /proc/self/fd/29
 46 | /proc/self/fd/30
 47 | /proc/self/fd/31
 48 | /proc/self/fd/32
 49 | /proc/self/fd/33
 50 | /proc/self/fd/34
 51 | /proc/self/fd/35
 52 | /proc/sched_debug
 53 | /proc/mounts
 54 | /proc/net/arp
 55 | /proc/net/route
 56 | /proc/net/tcp
 57 | /proc/net/udp
 58 | /proc/net/fib_trie
 59 | /proc/version
 60 | /etc/httpd/conf/httpd.conf
 61 | /etc/rc.local
 62 | /usr/local/apache/conf/httpd.conf
 63 | /var/www/html/apache/conf/httpd.conf
 64 | /home/httpd/conf/httpd.conf
 65 | /usr/local/apache2/conf/httpd.conf
 66 | /usr/local/httpd/conf/httpd.conf
 67 | /etc/apache/httpd.conf
 68 | /usr/local/lib/php.ini
 69 | /etc/hosts.deny
 70 | /etc/bashrc
 71 | /etc/group
 72 | /etc/httpd/httpd.conf
 73 | /etc/issue
 74 | /etc/issue/net
 75 | /etc/ssh/ssh_config
 76 | /etc/termcap
 77 | /etc/xinetd.d
 78 | /etc/mtab
 79 | /etc/vsftpd/vsftpd.conf
 80 | /etc/xinetd.conf
 81 | /etc/protocols
 82 | /etc/logrotate.conf
 83 | /etc/ld.so.conf
 84 | /etc/wgetrc
 85 | /etc/passwd
 86 | /etc/shadow
 87 | /etc/inputrc
 88 | /etc/resolv.conf
 89 | /etc/sysconfig/network
 90 | /etc/sendmail.cf
 91 | /etc/sendmail.cw	
 92 | /usr/local/app/apache2/conf/httpd.conf
 93 | /usr/local/apache2/conf/httpd.conf
 94 | /usr/local/app/apache2/conf/extra/httpd-vhosts.conf
 95 | /usr/local/app/php5/lib/php.ini
 96 | /etc/sysconfig/iptables
 97 | /etc/rsyncd.conf
 98 | /etc/sysconfig/network-scripts/ifcfg-eth0
 99 | /etc/redhat-release
100 | /var/spool/cron/crontabs/root
101 | /root/.pgpass
102 | /root/.psql_history
103 | /etc/fstab
104 | /etc/host.conf
105 | /etc/motd
106 | /etc/ld.so.conf
107 | /etc/sysconfig/network-scripts/ifcfg-eth0
108 | /etc/sysconfig/network-scripts/ifcfg-eth1
109 | /www/php/php.ini
110 | /www/php4/php.ini
111 | /www/php5/php.ini
112 | /www/conf/httpd.conf
113 | /www/htdocs/index.php
114 | /etc/phpmyadmin/config.inc.php
115 | /etc/mysql/my.cnf
116 | /etc/httpd/conf.d/php.conf
117 | /etc/httpd/conf.d/httpd.conf
118 | /etc/httpd/logs/error_log
119 | /etc/httpd/logs/error.log
120 | /etc/httpd/logs/access_log
121 | /var/log/error_log
122 | /var/log/error.log
123 | /var/log/access_log
124 | /var/log/access.log
125 | /etc/init.d/httpd
126 | /etc/init.d/mysql
127 | /xampp/apache/bin/php.ini
128 | /xampp/apache/conf/httpd.conf
129 | /NetServer/bin/stable/apache/php.ini
130 | /home2/bin/stable/apache/php.ini
131 | /var/log/mysql.log
132 | /var/log/mysqlderror.log
133 | /var/log/mysql/mysql.log
134 | /var/log/mysql/mysql-slow.log
135 | /var/mysql.log
136 | /etc/apache2/apache2.conf
137 | /etc/apache2/sites-available/000-default.conf
138 | /etc/apache2/sites-enabled/000-default.conf
139 | /etc/nginx/sites-available/default
140 | /etc/nginx/sites-enabled/default
141 | /etc/nginx/nginx.conf
142 | /usr/local/lib/php/pearcmd.php
143 | /usr/share/pear/pearcmd.php
144 | /usr/share/php/pearcmd.php
145 | 


--------------------------------------------------------------------------------