Hack The Box: Fortune

Fortune is a just retired Insane rated box which is actually my first owned machine in this range of difficulty and it ended up being easier than I expected. In my opinion, this box was perfectly designed and it was an awesome ride from start to finish, very enjoyable. This is an OpenBDS box that […]

Leer más
Write-Up Google CTF – «Malvertising»

Description Unravel the layers of malvertising to uncover the Flag.https://malvertising.web.ctfcompetition.com Analysis We’re given the webpage of the link above. When we read the source, an iframe to ads/ad.html appears. Clicking it, we notice the file src/metrics.js, which is, not only minimized, but completely obfuscated. Procedure Stage 1 After a few hours of cleaning the code, […]

Leer más
Write-Up INS’HACK2019 – «hell_of_a_jail»

Description A guy from FBI found about your Ruby programming activities and has put you inside a python Jail ! Find your way out!ssh -i -p 2222 user@hell-of-a-jail.ctf.insecurity-insa.frTo find your keyfile, look into your profile on this website.Category: pwn Analysis Once we connect through ssh, we see the following: So it’s a Python jail. We’re […]

Leer más
Write-Up INS’HACK2019 – Ropberry

Description You hack this guy on challenge called gimme-your-shell, but he is still always asking me the same question when I try to find his secret. Maybe you can do something.He is waiting for you at: ssh -i <your_keyfile> -p 2226 user@ropberry.ctf.insecurity-insa.fr To find your keyfile, look into your profile on this website.Category: pwnFile: here Analysis This challenge […]

Leer más
Write-Up WPICTF2019 – Secureshell

Description I made the most secure remote shell there is!nc secureshell.wpictf.xyz 31337 (or 31338 or 31339)Category: pwnAuthor: awgFile: hereAuthors of the Write-Up: Klecko and JlXip Analysis For the analysis part we’re going to use a disassembler. Any will do, but I will be using Hopper Disassembler. We are given a 64-bit ELF executable. When executed, […]

Leer más