Asis CTF Quals 2019 - Fort Knox

Apr 25, 2019 - by FireShell Security Team

Introduction Let’s imagine a situation where we are analyzing some application that apparently is vulnerable to Server Side Template Injection (SSTI), but some of our payloads are not returning response, we also suspect that behind all this may have a...

Capture the Flag , Writeup , Web , Bug Bounty

Processo Seletivo FireShell Security Team - [PT-BR]

Apr 24, 2019 - by FireShell Security Team

Atenção você que gostaria de fazer parte do FireShell Security Team. Vamos abrir um processo seletivo para recrutamento de uma pessoa com habilidades em Pwnable. Este processo se dará em algumas etapas, e a primeira delas será desafios de Pwnable...

Recruting

Byte Bandits CTF 2019 - ImgAccess

Apr 13, 2019 - by Elber "f0lds" Tavares

Description: n00b created a super secure website for sharing images. Do you think you can hack it? http://imgaccess.ctf.euristica.in Write-up When looking at the index, we quickly noticed the uploader and input Enter image URL. Usually I think so I should...

Capture the Flag , Writeup , Web , Server Side Request Forgery

SSRF Tips: SSRF in Microsoft’s Bing Webmaster Central

Apr 9, 2019 - by Elber "f0lds" Tavares

Today I’m going to talk about a trick that might be useful for BugHunters. While I was looking for a few things about BugBounty, I found a report where the author talked about an SSRF which he had found in...

Proof of Concept , Bug Bounty

Sunshine CTF 2019 - The Whole Pkg

Apr 2, 2019 - by Rafael "rasknikov" Correia

Description I’ve stored all of my wrestling strategies in a state-of-the-art secret vault. I even wrote it in nodeJS, can’t get more cutting edge than that! Author: dmaria Strategy_Vault-win.exe Write-up The application showed options to list and read files, but...

Capture the Flag , Writeup , Reverse Engineering

Sunshine CTF 2019 - Golly Gee Willikers

Apr 2, 2019 - by Renato "shrimpgo" Pacheco

“Golly Gee Willikers” (100) Someone sent me this weird file and I don’t understand it. It’s freaking me out, this isn’t a game! Please help me figure out what’s in this file. golly_gee_willikers.txt Author: hackucf_kcolley Write-up The content of file...

Capture the Flag , Writeup , Forensics

Sunshine CTF 2019 - 16-bit-AES

Mar 31, 2019 - by Rafael "rasknikov" Correia

Description Why so small? nc aes.sunshinectf.org 4200 Author: ps_iclimbthings Write-up Short write-up here. The server asked for a word to be encrypted and then asked the client to encrypt a given text using the same key: Welcome, I'm using an...

Capture the Flag , Writeup , Cryptography

0CTF/TCTF 2019 Quals - zer0lfsr

Mar 29, 2019 - by Rafael "rasknikov" Correia

Description Please enjoy the classical lfsr. zer0lfsr.tar.gz Attachment content chall.py keystream chall.py script from secret import init1,init2,init3,FLAG import hashlib assert(FLAG=="flag{"+hashlib.sha256(init1+init2+init3).hexdigest()+"}") class lfsr(): def __init__(self, init, mask, length): self.init = init self.mask = mask self.lengthmask = 2**(length+1)-1 def next(self): nextdata =...

Capture the Flag , Writeup , Cryptography

0CTF/TCTF 2019 Quals - Ghost Pepper

Mar 29, 2019 - by Rafael "rasknikov" Correia

Description Do you know ghost pepper? Let's eat. http://111.186.63.207:31337 Write-up Vitor B2e4gl3 started the enumeration of this challenge and was extremely important for my final solution. When the page was accessed, a credential was asked: As the authentication realm was...

Capture the Flag , Writeup , Web

$1.000 SSRF in Slack

Feb 17, 2019 - by Elber "f0lds" Tavares

Before I start, I have two important tips for anyone starting in the world of BugBounty. 1: Always check previous reports, you may know some bypass that may work in that situation, or you can learn something new. 2: If...

Proof of Concept , Bug Bounty