Pwnium CTF – pwn100 Write-up

J’ai dĂ©cidĂ© d’Ă©crire un petit write-up pour ce challenge on ne peut plus facile car les solutions que j’ai vues n’Ă©taient vraiment pas satisfaisantes: Utilisation de bruteforce, payloads peu sophistiquĂ©s, etc. Nous allons donc faire ça de manière plus Ă©laborĂ©e en prenant en compte notre environnement au moment du crash. Vous pourrez trouver le binaire […]

ROPOSAURUS REX VS HOMO STACKIENS – CONCEPTS

I decided to release a paper I presented during the Hackito ergo Sum 2013 event. The challenge is slightly old, but may have few relevant stuff. Download challenge ROPMAP Return Oriented Programing – What is it? The Truth on Stack Smashing. Protection/Mitigations? Custom stack; Promote quality; write one-shot powerful all-round exploits; read() family: Cool friends; […]

NDH 2013 Quals – Web 200

NDH 2013 Quals – Write-up Web 200 I18L INTRO Excellents challenges que nous ont prĂ©parĂ© les amis de Hackerzvoice cette annĂ©e. Parmi eux, le challenge web I18L valant son pesant d’or (200 points) nous a particulièrement rĂ©galĂ©. Le cotĂ© intĂ©ressant du challenge, ce n’est bien sĂ»r pas la dĂ©tection de la vulnĂ©rabilitĂ© qui nous saute […]

[PHDays]Web 0.3 Write-Up | Alternative way

Hello, here I am going to try explaining how to pwn the Web challenge on the 192.168.0.3 server. I am pretty surprised not so much teams managed to validate this flag, knowing how easy it was, compared to some other challenges. I am sorry not to provide any screenshot, but I did not have the […]