secuinside 2014 - "pillow" Writeup

So the Secuinside CTF 2014 just finished. Overall we did okay, but could have rocked this one more. Unfortunately, there was a lot of reversing stuff, not my strong suit. However, the first challenge I attempted was one of those that really...

hack.lu 2013 - "What's wrong with this?" Writeup

Note This article took some time to get published. I wrote it in November but I had to put off finishing it until now. Sorry for the delay. So the hack.lu 2013 CTF is over and it was a blast again. Thanks to everyone for their participation and...

iCTF 2013 "secretvault" Writeup - Why ECB is a Bad Idea

So I wasn't too fond of this year's iCTF with their ever returning complexity that drives your focus away from the actual exploiting and security fixes. The concept sounded great but as with the previous two years it was just to much work besides...

plaidCTF 2013 "pyjail" Writeup - Part I: Breaking the Sandbox

Note This is part one of the two part process describing how we broke the pyjail challenge on plaidCTF 2013. The second part is written by qll and covers the nonalpha stuff. This first part covers how to escape the sandbox. The pyjail challenge...

plaidCTF 2013 "cyrpto" Writeup

A lot of the plaidCTF 2013 challenges were binary this year. Since I am more the Python guy, I looked for Python code to exploit. There were only very few of those and most of them weren't even about Python :-( One of those challenges was...