2019
Introduction Let’s imagine a situation where we are analyzing some application that apparently is vulnerable to Server Side Template Injection...
Description: n00b created a super secure website for sharing images. Do you think you can hack it? http://imgaccess.ctf.euristica.in Write-up When...
Description Do you know ghost pepper? Let’s eat. http://111.186.63.207:31337 Write-up Vitor B2e4gl3 started the enumeration of this challenge and was...
2018
One Frida script for two Flags ASIS 2018 Gunshop and Gunshop II challenges were about an Android app. And I...
This challenge when I got it, I did not even know its description, but I really like that kind of...
Description: do it all you need to get shell Autor: @keerok URL: http://chall.hackaflag.com.br:8664 Below, the main page of chall: Of...
This challenge is interesting, sometimes it does not seem very realistic, but if you take the side of that every...
This challenge is really silly, but what is annoying, is that he was blocking the use of the Burp Suite...
This challenge happened this weekend and I enjoyed a lot it’s solving, also got a first blood here :) At...
Convert 100 If you need to convert something to Markdown, you can try our service: http://convert.nonameconctf2018.xyz This challenge quickly illustrates...
“This search engine doesn’t look very secure. Or well coded. Or competent in any way shape or form. This should...
“Marceau Hey my friend tells me that the flag is in this site’s source code. Idk how to read that...
Home Sweet Home Looks like this site is doing some IP filtering. That’s very FORWARD thinking of them. Have fun!...
Evaluation Evaluate your life. How are you doing, and are you doing the best you can possibly do? Look deeper...
“service, to communicate with his associates. Let’s see if you can hack your way in his account… Hint: his password’s...
The following page was given by the task: Without second thoughts, it’s clear this is about an LFI so I...
a strange online reservation system for restaurants, please hacking it This challenge told us little, just said it was to...
This challenge sent to the following page: When I tried to login, the page returned a message that the dashboard...
This challenge sent us to the following page: After a few attempts at the index.php?file, I opened the source code...
Description: http://neverlanctf-challenges-elb-2146429546.us-west-2.elb.amazonaws.com:14098/ 1.A little recon in case you don’t know who is “cookie monster” Google search “cookie monster” It’s a...