So the Secuinside CTF 2014 just finished. Overall we did okay, but could have rocked this one more. Unfortunately, there was a lot of reversing stuff, not my strong suit. However, the first challenge I attempted was one of those that really...
Note This article took some time to get published. I wrote it in November but I had to put off finishing it until now. Sorry for the delay. So the hack.lu 2013 CTF is over and it was a blast again. Thanks to everyone for their participation and...
So I wasn't too fond of this year's iCTF with their ever returning complexity that drives your focus away from the actual exploiting and security fixes. The concept sounded great but as with the previous two years it was just to much work besides...
Note This is part two of the two part process describing how we broke the pyjail challenge on plaidCTF 2013. The first part described how we broke the sandbox. This part describes how we circumvented the nonalpha stuff. I will now describe how we...
Note This is part one of the two part process describing how we broke the pyjail challenge on plaidCTF 2013. The second part is written by qll and covers the nonalpha stuff. This first part covers how to escape the sandbox. The pyjail challenge...
A lot of the plaidCTF 2013 challenges were binary this year. Since I am more the Python guy, I looked for Python code to exploit. There were only very few of those and most of them weren't even about Python :-( One of those challenges was...