iCTF 2013 "secretvault" Writeup - Why ECB is a Bad Idea

So I wasn't too fond of this year's iCTF with their ever returning complexity that drives your focus away from the actual exploiting and security fixes. The concept sounded great but as with the previous two years it was just to much work besides...

Moving away from the cloud Part IV - Jabber

Note This is the fourth part of the series of how to pull your data out of the cloud. You can find the introduction together with a list of currently published articles here. Well, it has been some time since my last post since I was kind of...

Updating GitLab to Version 5.2 on ArchLinux

I am using GitLab on my server and today I upgraded to version 5.2 mostly because a system update somehow broke my custom changes regarding certificate verification (it seems it is now included in gitlab-shell). Anyway, I was faced with the issue...

plaidCTF 2013 "pyjail" Writeup - Part I: Breaking the Sandbox

Note This is part one of the two part process describing how we broke the pyjail challenge on plaidCTF 2013. The second part is written by qll and covers the nonalpha stuff. This first part covers how to escape the sandbox. The pyjail challenge...

plaidCTF 2013 "cyrpto" Writeup

A lot of the plaidCTF 2013 challenges were binary this year. Since I am more the Python guy, I looked for Python code to exploit. There were only very few of those and most of them weren't even about Python :-( One of those challenges was...

Moving away from the cloud Part III - Mail

Note This is the third part of the series of how to pull your data out of the cloud. You can find the introduction together with a list of currently published articles here. Mail In this entry, I will go over how to migrate your mail. Mail is a really …

Moving away from the cloud Part II - Contacts

Note This is the second part of the series of how to pull your data out of the cloud. You can find the introduction together with a list of currently published articles here. In this short overview we will detail the storage of contacts. Contacts...