bi0s
  •  Home
  •  Categories
  •  Archives
  •  Tags
  •  Home
  •  Categories
  •  Archives
  •  Tags

BlueLock - bi0sCTF22

AmunRha
2023-02-10
Reversing / Windows

tl;dr

  • Implemented two SEH and two VEH Exception Handlers
  • Two stage malware challenge with process injection technique
  • CPP binary where logic is wrapped in classes and their member functions
Read More
bi0sCTF Windows Reversing ExceptionHandling

P1ayground - InCTF Internationals 2020

leArner
2020-08-14
Reversing / Windows

A brief write-up of the intended solution of P1ayground challenge from InCTF Internationals 2020

tl;dr

  • Challenge is based on function hooking at runtime.
  • On reversing you will find 4 functions at the same address but executing different code(basically hooked at runtime).
  • Jump inside each function, reverse the algorithms to pass the checks.
  • Ignore the FAKE flag check.
Read More
InCTFi Windows Reversing APIhooking

Wannavmbe - InCTF Internationals 2019

Freakston
2019-09-30
Reversing / Windows

Intended solution of Wannavmbe challenge from InCTF Internationals 2019

tl;dr

  • Challenge is a VM.
  • Reverse Instruction types and implementation.
  • Understand that it has a fucntion which takes the base64 of CWD (Current working directory).
  • Find the corrcect directory where it needs to be placed.
Read More
VM Windows Reversing Automation

Official blog of team bi0s

  Projects
  •   bi0s-wargame
    (Unraveling)
  •   bi0s-wiki
    (Free Encyclopedia)
  •   InCTF
    (Nationals CTF)
  •   InCTFj
    (Juniors CTF)

Made With Love and Coffee



Blog content follows the Attribution-NonCommercial-ShareAlike 4.0 International (CC BY-NC-SA 4.0) License

Use Material X as theme, total visits times.