WriteUp
Real World CTF 2023: Happy-Card Writeup
Real World CTF 2023 was a jeopardy-style capture-the-flag event. We participated as part of the Sauercloud CTF-team. How Solve? Where Exploit? G...
Real World CTF 2023 – NonHeavyFTP
This is a short writeup on the “NonHeavyFTP” challenge from Real World CTF 2023. This was one of the easier challenges with the goal of exploiting ...
[CTF write up] Tet CTF 2023 – mailService : Logical bug & Mem corruption PWN
ida mailclient와 mailserver라는 바이너리가 있으며 서로 통신하며, 파일을 생성하고 읽는다. 가장 눈에 띄는 취약점은 다음과 같이 콘텐츠 사이즈를...
TetCTF 2023: Mailservice
This challenge featured a client and server binary both running on the same system operating as a basic mail sending/receiving service. The mailser...
TetCTF2023&Liferay(CVE-2019-16891)(Pre-Auth RCE)
这周末打了这个比赛挺不错的一个,但是主要还是写一下这题,其他题虽然也有难度但是并不值得我记录 正文 首先这题被拆分为了两个部分,觉得两部分都挺有意思...
一道SROP漏洞利用的Pwn题
本文为看雪论坛优秀文章看雪论坛作者ID:e*16 a一注意SROP(Sigreturn Oriented Programming) 于 2014 年被 Vrije Universiteit Amsterdam 的 Erik Bosman 提...
2022IS河南工业控制安全部分web题解
本文来自:天权信安网络安全生态圈 作者:天权信安网络安全团队HeadlightHNGK-兰亭集序01web兰亭集序进入靶机,直接跳转到这个URL页面,有file参...
TetCTF 2023 All crypto + misc(TetCTF) writeup by Neobeo
TetCTF 2023 I played with Social Engineering Experts and we came in fourth. We were also the first team to solve all six crypto. I will be writi...
Hackvent 2022 – Hard
Days fifteen through twentyone were the hard challenges. There were some really great coding challenges. I loved day sixteen, where I’ll have to ch...
Faraday CTF 2022 Write-up: Reverse Engineering and Exploiting an IoT bug
At the beginning of November this year, in Buenos Aires, Argentina, Faraday had the privilege to be a sponsor of the EKOParty security conference. ...