1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12

[200][text/plain; charset=utf-8][21.00b] http://30e2220f-465d-4920-82f8-01d52c8f6522.node4.buuoj.cn:81/.git/HEAD

[200][text/plain; charset=utf-8][265.00b] http://30e2220f-465d-4920-82f8-01d52c8f6522.node4.buuoj.cn:81/.git/COMMIT_EDITMSG

[200][application/octet-stream][289.00b] http://30e2220f-465d-4920-82f8-01d52c8f6522.node4.buuoj.cn:81/.git/index

[200][text/plain; charset=utf-8][459.00b] http://30e2220f-465d-4920-82f8-01d52c8f6522.node4.buuoj.cn:81/.git/logs/HEAD

[200][text/plain; charset=utf-8][112.00b] http://30e2220f-465d-4920-82f8-01d52c8f6522.node4.buuoj.cn:81/.git/packed-refs

[200][text/plain; charset=utf-8][177.00b] http://30e2220f-465d-4920-82f8-01d52c8f6522.node4.buuoj.cn:81/.git/logs/refs/remotes/origin/HEAD

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14

200   265B   http://30e2220f-465d-4920-82f8-01d52c8f6522.node4.buuoj.cn:81/.git/COMMIT_EDITMSG

200    73B   http://30e2220f-465d-4920-82f8-01d52c8f6522.node4.buuoj.cn:81/.git/description

502     0B   http://30e2220f-465d-4920-82f8-01d52c8f6522.node4.buuoj.cn:81/.gdrive/token_v2.json

403   316B   http://30e2220f-465d-4920-82f8-01d52c8f6522.node4.buuoj.cn:81/.git/hooks/

200   295B   http://30e2220f-465d-4920-82f8-01d52c8f6522.node4.buuoj.cn:81/.git/config

200    21B   http://30e2220f-465d-4920-82f8-01d52c8f6522.node4.buuoj.cn:81/.git/HEAD

...//还有很多就省略了

1
2

python .\GitHack.py http://30e2220f-465d-4920-82f8-01d52c8f6522.node4.buuoj.cn:81/.git/

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14

//bo0g1pop.php

<?phphighlight_file(__FILE__);

if (';' === preg_replace('/[^\W]+\((?R)?\)/', '', $_GET['star'])) {    

    if(!preg_match('/high|get_defined_vars|scandir|var_dump|read|file|php|curent|end/i',$_GET['star'])){        

        eval($_GET['star']);    

        }

}