HTB-PlayCyberCTF

#Linux  #Pwn  #Patching  #Ret2libc 

This blog post is a walk-through of the Orb Pwn Challenge from the Global Cyber Games: New Year Mayhem 2024 CTF . This pwn challenge was a medium level challenge and an interesting challenge to solve.

Read more →

ShmooCon CTF

#Linux  #Ssti  #DotNet  #Ctf  #ShmooConCTF 
Over the recent weekend, I found some free time that enabled me to participate in the ShmooCon CTF. While it did not have pwn challenges as I had hoped, they offered a variety of challenges I enjoyed solving. This blogpost is a walkthrough of some of the challenges I managed to solve. Catalog Reverse Engineering First .NET WordSmith WordSmith2 Cloud Statically Charged Putting in Work Troposphere Walking Crypto Barcode ShmarCode Cloud Statically Charged For this challenge, we are provided with a url and upon visiting the link , we get a slideshow of some AI generated images.
Read more →

CrewCtf Writeups

#Linux  #Volatility  #Forensics  #Truecrypt 
It has been a while since I last participated in a CTF (Capture The Flag) competition. With a few moments to spare this weekend, I decided to immerse myself in CrewCTF by theHackersCrew CTF team. Their event offered a diverse range of challenges, but I chose to focus primarily on the fascinating field of forensics. In this blog, I will share my approach and solutions for the different challenges I managed to solve.
Read more →

Blogger - Box

#Linux  #Wordpress  #Arbitrary file upload  #Pwnkit 

In this blogpost , I will document how I was able to gain access to the Blogger Machine from Offensive Security Proving Ground Labs. The Blogger Box was a beginner level easy box.

Machine is running on 192.168.241.217. First things first, we add the entry to /etc/hosts

Read more →