- Published on
Bash challenge with character filtering restrictions. Used parameter expansion and wildcards to bypass filters and execute /readflag.
All Posts
All Posts
- ctf (11)
- pcc25-qual (10)
- reverse-engineering (4)
- tutorial (3)
- xor (3)
- cryptography (2)
- misc (2)
- pwn (2)
- rop (2)
- binary-exploitation (2)
- binary-analysis (2)
- cpp (1)
- programming (1)
- coding (1)
- software-development (1)
- docker (1)
- cybersecurity (1)
- capture-the-flag (1)
- blogging (1)
- getting-started (1)
- vm (1)
- custom-architecture (1)
- forensics (1)
- bash-history (1)
- bash (1)
- parameter-expansion (1)
- wildcards (1)
- python (1)
- injection (1)
- exec (1)
- code-injection (1)
- ret2win (1)
- buffer-overflow (1)
- memory-corruption (1)
- java (1)
- spring-boot (1)
- classfinal (1)
- aes (1)
- static-analysis (1)
- web (1)
- lfi (1)
- php (1)
- filter-chains (1)
- Published on
Python code injection challenge. Exploited exec() vulnerability by injecting malicious code through password parameter to read the flag.- Published on
ROP challenge demonstrating ret2win technique. Used ROP gadgets to call win function with correct arguments and gain shell access.- Published on
Classic buffer overflow challenge demonstrating memory corruption techniques. Overwrote critical variables to gain shell access.- Published on
Java Spring Boot application reverse engineering challenge. Bypassed ClassFinal obfuscation to analyze license validation and generate valid license keys.