CTF: Depth: 1
This is a write-up on the Depth: 1 CTF released by Dan Lawson
The VM has just one accessible service – a web server running the Apache Tomcat jsp engine:
Continue reading “CTF: Depth: 1”
CTF: Bulldog 1 walkthrough
This is a walkthrough on the Bulldog 1 vulnhub CTF by Nick Frichette
Continue reading “CTF: Bulldog 1 walkthrough”
CTF: The Ether: EvilScience (walkthrough)
md5 collisions and the way php interprets types (php hash collisions)
As I was recently working on the Homeless vulnhub CTF by Min Ko Ko, one of steps required to proceed further contained the following code:
Continue reading “md5 collisions and the way php interprets types (php hash collisions)”
CTF: Basic Pentesting (a guide for beginners)
The Basic Pentesting CTF is a very basic beginner’s level CTF, which can be taken in just a few minutes. The remote attack vector on the machine is a direct way to get root in case you just read and understand the description of the exploit, so anyone reading this may benefit a bit more from the second attack vector I described.
Continue reading “CTF: Basic Pentesting (a guide for beginners)”
USV 2017 CTF walkthrough
In this post I’ll present a walkthrough on the methods I used for the vulnhub VM which presents the USV 2017 CTF competition, which is held each year in Suceava University, created by Oana Stoian and Teodor Lupan from Safetech Innovations (Bucharest, RO)
Continue reading “USV 2017 CTF walkthrough”
g0rmint: 1 – vulnhub walkthrough
This is a walkthrough of the g0rmint 1 vulnhub machine released by Noman Riffat
vulnhub link: g0rmint: 1
Continue reading “g0rmint: 1 – vulnhub walkthrough”d7x’s cheatsheet
https://cheatsheet.promiselabs.net
This is my cheatsheet which I use as reference for the most common stuff usually needed in penetration testing (and some stuff for exploit development included as well)