bi0s
  •  Home
  •  Categories
  •  Archives
  •  Home
  •  Categories
  •  Archives

Signal VM de1ta (Part 2) - de1CTF 2019

R3x
2019-08-09
Reversing / Linux

tl;dr

  • Challenge is a VM implemented over signals and ptrace
  • Reverse Instruction types and implementation
  • Use gdb scripting to find the executed code and get the pseudo VM code
  • Find out the algorithm (Max triangle sum) from VM instructions
  • Find an more optimized way to solve the problem (Or lazy solve it!).
Read More
VM Reversing Linux Automation

Signal VM (Part 1) - de1CTF 2019

R3x
2019-08-08
Reversing / Linux

tl;dr

  • Challenge is a VM implemented over signals and ptrace
  • Reverse Instruction types and implementation
  • Use gdb scripting to find the executed code and get the pseudo VM code
  • Reverse the VM functionality (Hill cipher) for flag and profit
Read More
VM Reversing Linux Automation

Copychall - Acebear CTF 2019

R3x
2019-04-25
Reversing / Linux

tl;dr

  • You need to pass 999 levels to get the flag.
  • Each of the levels involves multiple checks on input characters.
  • Each check happens in seperate functions which are decrypted during runtime.
  • Extract function order and arguments.
  • Automate finding input for each check.
Read More
Linux Reversing

Official blog of team bi0s

  Find us on
  •   bi0s
    (Homepage)
  •   CTFtime
    (bi0s)
  •   Twitter
    (@teambi0s)
  •   GitHub
    (/teambi0s)
  •   Facebook
    (/teambi0s)
  •   LinkedIn
    (/bi0s)
  Categories
  • Crypto
    (11)
  • Authenticated-Ciphers
    (1)
  • Block-Ciphers
    (1)
  • Digital-Signatures
    (2)
  • Elliptic-Curves
    (2)
  • Linear
    (1)
  • PRNG
    (1)
  • PubKey-Enc
    (2)
  • Forensics
    (12)
  • Disk
    (1)
  • Memory
    (5)
  • Network
    (5)
  • Steganography
    (1)
  • Hardware
    (1)
  • Pwn
    (11)
  • Browser-Exploitation
    (2)
  • Kernel-Exploitation
    (1)
  • Linux
    (1)
  • ELF
    (1)
  • VM-Escape
    (1)
  • Windows
    (1)
  • Reversing
    (5)
  • Automation
    (1)
  • Linux
    (3)
  • Windows
    (1)
  • Web
    (4)
  Tags
35c3 AES-CTR Automation BLE Badge Life BitFlipping BugBounty CTF CTRmode CVE-Writeups Coppersmith CustomTCP DLP ECDLP EV3 Robot ElGamal Euler Exploitation Gauss GoogleCTF Gopherus HITCON Hack.lu HackTM Hardware Badge HenselLifting InCTFi IoT JIT Kernel Exploitation Linux Linux Reversing MacOS Memory Analysis Matrix Morse Code NumberTheory OOB PHP PIL PRNG PohligHellman PolynomialRing Privilege-Escalation PublicKeyCrypto Pwn RAID Recovery RBF RSA Reversing SSRF Steganography Stego VM VM-Escape Volatility Windows Windows Memory Analysis Wireshark Write-up Writeup disable_functions fuzzer pwn spidermonkey writeup
  Projects
  •   bi0s-wargame
    (Unraveling)
  •   bi0s-wiki
    (Free Encyclopedia)
  •   InCTF
    (bi0s CTF)

Made With Love and Coffee



Blog content follows the Attribution-NonCommercial-ShareAlike 4.0 International (CC BY-NC-SA 4.0) License

Use Material X as theme, total visits times.