Publicado enCodeigniter
CTF NN4ED – Navaja Negra – Writeup
This is my CTF on Navaja Negra writeup and solutions. 0758683c65d8d8d88e7955cfe4ab4538_ctf_nn4ed_tunelko
![MakeMeFeeWet^Hb [No cON Name 2014 CTF – QUALS]](https://i0.wp.com/blogs.tunelko.com/wp-content/uploads/2013/12/DEF_CON_17_CTF_competition.jpg?fit=768%2C511&ssl=1)
MakeMeFeeWet^Hb [No cON Name 2014 CTF – QUALS]
This challenge has a a bit more complicated solution proceess and more fun to learn. We have a login page that stay inmmutable to our several injection attacks. The only weird thing is a comment on the source page, vim…
WEBster [No cON Name 2014 CTF – QUALS]
This year "No cON Name Capture The Flag" quals had more than three challenges to compete for the final, so big thanks to organizers to extend last year limit. At now ( 09:27 am GMT+2 ), @DefCon-UA (dcua team) have…
Avoiding wordpress xmlrpc attack. How to mitigate?
This entry was unintended. Thanks to the people that yesterday launch an attack over an updated wordpress. I have noticed this attack few hours later from its start when i see the consumption of server CPU resources: It is strange…
Publicado enCTF
Second NotSoSecure SQLiLab CTF
Dear fellow Hackers!, thanks for signing up for the 2nd SQLiLab CTF. The CTF is now on!. Before you go all out hacking the CTF, here are some rules of the engagement: 1. Strictly no brute-forcing. There is no need…
Publicado enCTF
Mission 1 & Mission 2 Write-Ups – Security-BSides London
Hi all!. Last february i have participated on Security BSides Challenges, here: https://www.securitybsides.org.uk/challenge1.html https://www.securitybsides.org.uk/challenge2.html Yesterday @AlecRWaters contacts me to confirm that we get second position on both challenges. So got a ticket to this infosec conference. "Hi , I’m delighted to announce…
Publicado enCTF
PHDays 2014 Quals: PHP_JL writeup
This time another great quals CTF organized by guys and girls of PHdays. PHP_JL was another PHP with safe_mode and functions disabled. First we have to notice is the source of html output: <!-- Notice: Undefined index: code in /var/www/index.php…
Ghost in the Shellcode 2014: Write-up CTF247
This weekend we have 46 hours of hard ctf. Organization let tou play a 'doom-style' game that could be decompiled and must be pwned to achieve some missions. This task is one of two web challenges, a parody of CTF365 (lol).Going…