Saturday, March 23, 2019

[Writeup] Insomnihack final 2019

By  at March 23, 2019  , , , ,  No comments
myBrokenBash For this challenge, the author give us something about stdout and when I try to send something the server will reply the string that I send, it's make me remember to a challenge in Ringzer0 CTF about bash shell jail escaping. It use file description to bypass stdout. Redirect from stdout...

Monday, March 11, 2019

[Writeup] Pragyan CTF - Forensics

By  at March 11, 2019  , , , ,  No comments
Welcome We have a jpg file, I used HXD and see a zip file in it, then I used binwalk to get the zip file. 1 2 3 4 5 6 7 $ binwalk welcome.jpeg DECIMAL HEXADECIMAL DESCRIPTION -------------------------------------------------------------------------------- 0 0x0 ...

Tuesday, March 5, 2019

[Writeup] BSidesSF 2019 CTF

By  at March 05, 2019  , , ,  No comments
Trivia 1: Search nguyên dòng chữ "My voice is my ________. Verify me." lên google mình thấy ngay ở kết quả tìm thấy đầu tiên: My voice is my passport Flag: passport. Forensics table-tennis Sử dụng wireshark, mình thấy có khá nhiều certificate, tuy nhiên nhưng chứng chỉ này không làm được gì cả....