- Published on
Complete reverse engineering of AshfaqVM - a custom virtual machine with encrypted flag validation. Includes VM architecture analysis, tool development, and algorithm reversal.
Pcc25-qual
All Posts
- ctf (11)
pcc25-qual (10)
- reverse-engineering (4)
- tutorial (3)
- xor (3)
- cryptography (2)
- misc (2)
- pwn (2)
- rop (2)
- binary-exploitation (2)
- binary-analysis (2)
- cpp (1)
- programming (1)
- coding (1)
- software-development (1)
- docker (1)
- cybersecurity (1)
- capture-the-flag (1)
- blogging (1)
- getting-started (1)
- vm (1)
- custom-architecture (1)
- forensics (1)
- bash-history (1)
- bash (1)
- parameter-expansion (1)
- wildcards (1)
- python (1)
- injection (1)
- exec (1)
- code-injection (1)
- ret2win (1)
- buffer-overflow (1)
- memory-corruption (1)
- java (1)
- spring-boot (1)
- classfinal (1)
- aes (1)
- static-analysis (1)
- web (1)
- lfi (1)
- php (1)
- filter-chains (1)
- Published on
Forensic analysis of tampered AI research files using XOR encryption. Recovered the flag by analyzing bash history and finding hidden keys.- Published on
Bash challenge with character filtering restrictions. Used parameter expansion and wildcards to bypass filters and execute /readflag.- Published on
Python code injection challenge. Exploited exec() vulnerability by injecting malicious code through password parameter to read the flag.- Published on
ROP challenge demonstrating ret2win technique. Used ROP gadgets to call win function with correct arguments and gain shell access.