[3DS CTF] [Exploit 300 – Please, no.] Write up[EN]
This time the programmer did a better job to hid his flag. But the problem still: It’s vulnerable. Can you obtain the flag?
Send to 209.190.1.131 9003
NOW WITH SECRET BONUS![PT-BR]
Dessa vez o programador caprichou um pouco mais na hora de esconder sua flag. O problema que continua vulneravel. Consegue extrair a flag?
Envie para 209.190.1.131 9003
AGORA COM BONUS SECRETO!Solved by 32 teams
Bonus solved by 5 teams
Continue reading [3DS CTF] [Exploit 300 – Please, no.] Write up
[Hack The Vote 2016] [Exploit 300 – FOX Voting Simulator] Write upIn primaries, it is important to get the most attention. With 12 candidates all sharing the stage, it can be hard to pull in voters. Luckily Mr Trump doesn’t have much problem with that, but we have a strategy to secure the vote for good. We have found voters respond very well to name recognition, and which ever candidate is polling the highest. We see a snowball effect if we can tip a few online polls his way, then it will be easier for him to take the real ones, and then eventually the nomination.
We were able to dump some of the source code from FOX’s new online poll service. We couldn’t get everything, but I’m sure that is no problem for you.
nc fox.pwn.republican 9000
author’s irc nick: itszn
26 solves
Continue reading [Hack The Vote 2016] [Exploit 300 – FOX Voting Simulator] Write up
[Hack.lu 2016] [EXPLOIT 200 – dataonly] Write upCthulhu is too chaotic and has lost the machine with his files. Cthulhu still has an old fileserver running on it though… Get the flag from /flag in the filesystem.
Connect to cthulhu.fluxfingers.net:1509.
Binaries
Continue reading [Hack.lu 2016] [EXPLOIT 200 – dataonly] Write up
[TUMCTF 2016] [EXPLOIT 200 – c0py_pr073c710n] Write UpSoftware piracy is a crime!
Don’t steal our hard work.
nc 104.154.90.175 54509
downloadHINT: 2.19-18+deb8u4
Solved by: 26
Bonuspoints: 11
Continue reading [TUMCTF 2016] [EXPLOIT 200 – c0py_pr073c710n] Write Up
[TUMCTF 2016] [EXPLOIT 150 – boot2brainfuck] Write UpYou are still trying to get code execution on your own? Hahaha.
There is an app for that!
We are now introducing Remote Code Execution as a Service (RCEaaS).
Pro tips:
+[—>++<]>.++++[->++++<]>+.++++++++++.———-.+++++++++++.[—->+<]>+++.-[—>++<]>–.++++++++++++..—-.[–>+<]>++.———–..[—>+<]>+++.[—>+<]>.——–.[->+++++<]>–.+[—>+<]>++++.++++++.[—>+<]>—–.—[->++<]>.++[—>++<]>+.>++++++++++.
Flag is at A:\FLAG.TXT
No keyboard input in the Freemium version :/
nc 130.211.155.146 20666
download
Solved by: 26
Bonuspoints: 11
Continue reading [TUMCTF 2016] [EXPLOIT 150 – boot2brainfuck] Write Up
