picoCTF - Binary Exploitation - Buffer Overflow 0
Binary Exploitation - buffer overflow 0 - writeup Description Smash the stack Let’s start off simple, can you overflow the correct buffer? The program is available here. You can view source here. And connect with it using: nc saturn.picoctf.net 57331 Writeup First I checked the strings of the binary file using the strings command but unfortunately I did not find anything interesting. Let’s fire up Ghidra and see what we’ve got here …
MHSCTF - Web - Et tu, Brute?
Web - Et tu, Brute? - writeup Description I want to see how many people are actually my friends and aren’t just pretending! Only my best friends get flags. You can check our friendship status at this website. mhsctf-ettubrute.0xmmalik.repl.co (you may need to wait for the site to wake up) Writeup So I went ahead and wrote a simple brute force program in python: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 #!
MHSCTF - General - Where the Wildcards Are 2
General - Where the Wildcards Are 2 - writeup Writeup Match all lowercase letters: 1 [a-z] Match all lowercase letters which are followed by two or more capital letters then three or more digits: (the capital letters and digits should not be included in the match) 1 [a-z](?=[A-Z]{2,}[0-9]{3,}) Match all numbers, letters, or underscores using the shortest possible pattern 1 \w 1 Flag: flag{m@tc#_mak3r}
MHSCTF - Forensics - Blatant Corruption
Forensics - Blatant Corruption - writeup Writeup so the file is broken. If we open the file with a hex editor we can see that the file header “.PNG” is missing at the top although it is a .png file. So if we insert the hex bytes 1 89 50 4E 47 at the very top of the file which translates to .PNG and we save the modified file we can now open the file successfully.