Description Unravel the layers of malvertising to uncover the Flag.https://malvertising.web.ctfcompetition.com Analysis We’re given the webpage of the link above. When we read the source, an iframe to ads/ad.html appears. Clicking it, we notice the file src/metrics.js, which is, not only minimized, but completely obfuscated. Procedure Stage 1 After a few hours of cleaning the code, […]
Description A guy from FBI found about your Ruby programming activities and has put you inside a python Jail ! Find your way out!ssh -i -p 2222 user@hell-of-a-jail.ctf.insecurity-insa.frTo find your keyfile, look into your profile on this website.Category: pwn Analysis Once we connect through ssh, we see the following: So it’s a Python jail. We’re […]
Description You hack this guy on challenge called gimme-your-shell, but he is still always asking me the same question when I try to find his secret. Maybe you can do something.He is waiting for you at: ssh -i <your_keyfile> -p 2226 user@ropberry.ctf.insecurity-insa.fr To find your keyfile, look into your profile on this website.Category: pwnFile: here Analysis This challenge […]
Description I made the most secure remote shell there is!nc secureshell.wpictf.xyz 31337 (or 31338 or 31339)Category: pwnAuthor: awgFile: hereAuthors of the Write-Up: Klecko and JlXip Analysis For the analysis part we’re going to use a disassembler. Any will do, but I will be using Hopper Disassembler. We are given a 64-bit ELF executable. When executed, […]
Esta es la resolución de la máquina Vault que ya ha sido retirada de las máquinas activas. Es una máquina que me gustó bastante porque tenemos que ir avanzando por otras máquinas sobre las que vamos encontrando información de forma gradual y nos presenta nuevas técnicas que no conocía. Por eso he decidido traerlo al […]
Recent Comments