trustie_rity – Medium

Pinned

GlacierCTF 2022 (Heap — Fastbin Dup)

Old_dayz is a heap challenge that was in Glacier CTF 2022and has a double free vulnerability allowing us to use the fastbin dup heaptechnique to execute arbitrary code. To check security mitigations that were used at the time of compiling this binary we can do the following : ➜…

Heap

9 min read

Heap

9 min read

Aug 27

Shakti CTF : House of Force

Last year I played shakti CTF but was unable to tackle the heap challenges. Recently I decided why not give them a shot? In this blog post i will show how one would leverage the house of force technique to solve one of the challenges. We are provided with a…

Heap

5 min read

Heap

5 min read

Jul 24

ImaginaryCTF 2023

I recently played imaginary CTF with my CTF team. I was one of the members that were doing pwn challenges and I was able to tackle some of which i will be showing in this article. PWN CHALLENGES ret2win

Ctf

12 min read

Ctf

12 min read

Jun 8

Sick ROP : HTB pwn challenge

Sick ROP is an Easy rated HTB pwn challenge. To be honest its not that easy if you haven’t set your binary exploitation basics right. In this blog i will be writing in detail each step i took in solving this challenge. On the platform you can download the binary…

Htb

7 min read

Htb

7 min read

May 22

HEROCTF

This is yet another CTF that i played solo! In this blog I will be talking in detail how i went about solving some of the challenges. SYSTEM Chm0d Challenge Description: Catch-22: a problematic situation for which the only solution is denied by a circumstance inherent in the problem. Credentials: user:password123 > Deploy on…

Heroctf

28 min read

Heroctf

28 min read

May 7

Escape Coursework : HTB

Escape is a medium rated windows box on HTB platform and this is how i went about solving it. Enumeration Using nmap we get the following information back. PORT STATE SERVICE VERSION 53/tcp open domain…

Htb

4 min read

Htb

4 min read

Apr 28

SPACEHEROES CTF

This is a CTF that i played solo for some individual reasons and am happy to see how it turned out to be! Survey

Ctf

14 min read

Ctf

14 min read

Mar 31

PENETRATION TESTING : DAY X

PENETRATION TESTING : DAY X Hi there! My name is John, and today I will be sharing a detailed report on my penetration testing of a web application for Company X. Just to be clear, I am posting this write-up with their consent. Penetration testing typically involves a cyber security specialist attempting to bypass the…

Penetration Testing

14 min read

Penetration Testing

14 min read

Feb 28

BIC CTF : pwn challenge

This blog is about blacks_in_cybersecurity CTF that I participated recently with an aim to do all reversing and pwn challenges that were there.

Ctf

4 min read

Ctf

4 min read

Dec 20, 2022

Sick rop : Example challenge

Foothold In these article i am going to solve a challenge i prepared for my folks for the urchinsec hackathon 2022. We are going to use SROP to solve the binary exploitation challenge Deep Dive The assembly source code looks like this: section .text global…

Binary Exploitation

3 min read

Sick rop : Urchinsec Hackathon challenge

Binary Exploitation

3 min read