bi0s

tl;dr

Linux userspace exploitation by parsing ELF for symbol addresses with an arbitrary read

HackTM

Find My Pass - HackTM CTF Quals 2020

stuxn3t

2020-02-09

Forensics / Memory

tl;dr

Memory dump analysis using Volatility.
Extracting Keepass Master Password from the memory.
Extracting flag from ZIP archive attached in the Keepass database.

Windows Memory Analysis HackTM

RR - HackTM CTF Quals 2020

stuxn3t

2020-02-09

Forensics / Disk

tl;dr

RAID recovery
JPEG image extraction from lost disk

HackTM RAID Recovery

Falcon Badge

securehardware

2020-01-21

Hardware

In this blog, we are going to share the experience of creating our first electronic badge.

Badge Life IoT Hardware Badge

Fuzzer gets us new functions to bypass PHP disable_functions

SpyD3r

2019-10-26

Web Exploitation

In this blog, we will be discussing the new functions we got to bypass PHP disable_functions and also the other tricks to do the same.

PHP disable_functions fuzzer

TCalc - Hack.lu CTF 2019

slashb4sh

2019-10-26

Pwn

tl;dr

Linux heap exploitation with arbitary free vulnerability

Writeup CTF Pwn

Schnurtelefon - Hack.lu CTF 2019

slashb4sh

2019-10-24

Pwn

tl;dr Linux client-server application heap exploitation

Hack.lu Write-up

Eval Me - Bsides Delhi CTF 2019

c3rb3ru5

2019-10-23

Web Exploitation

Write-up of Eval Me challenge from BSides Delhi CTF 2019

tl;dr Bypassing disable_functions using PHP-Imagick and Soffice

Write-up PHP

remain - SECCON CTF Quals 2019

slashb4sh

2019-10-20

Pwn

tl;dr

linux heap exploitation challenge with glibc 2.30

Writeup CTF Pwn

EV3 Arm - HITCON Quals 2019

f4lc0n

2019-10-16

Reversing / Automation

tl;dr

Decompile the given RBF file
Extract the low level instructions.
Write a script to plot the lines.

EV3 Robot HITCON PIL RBF

15 / 19