Vos

Author's details

Date registered: September 14, 2010

Latest posts

  1. hack you spb @ 17 Oct 2016 — October 15, 2016
  2. DEFCON CTF Survival Guide (2014) — September 5, 2015
  3. Olympic CTF Sochi 2014 Registration is Open — February 2, 2014
  4. Sudden CTF syndrome — January 7, 2014
  5. RuCTFe rocks, iCTF is fine, rwthCTF are assholes — December 18, 2013

Most commented posts

  1. RuCTFe rocks, iCTF is fine, rwthCTF are assholes — 14 comments
  2. Defcon CTF Quals 2013 – All Web Challenges (3dub) — 5 comments
  3. Hack.lu 2010 CTF #17 (Brainfuck) writeup — 4 comments
  4. IFSF CTF Small Challenges (#4, #5, #6, #14, #15) — 4 comments
  5. Defcon CTF Quals 2013 – \xff\xe4\xcc 4 (penser) — 4 comments

Author's posts listings

Oct
15

hack you spb @ 17 Oct 2016

Remember hack you CTF? Yeah, that random event that we throw for our freshmen and everyone interested. We’re hosting a new one. It’s fall already and that means the new CTF season is starting, and so is the new academic year in the universities. This is the time when we want to attract more freshmen… Continue reading »

Sep
05

DEFCON CTF Survival Guide (2014)

vos and snk from MSLC share their basic view of Attack-Defence CTFs and tell random stories in their two-hour talk at Chaos Constructions 2014.   With English subtitles

Feb
02

Olympic CTF Sochi 2014 Registration is Open

Let there be Olympics MSLC proudly presents…Alright, do we even need words here? Game starts: February 7th, 2014 16:14 UTC (yeah yeah, those Sochi number freaks… it’s 20:14 in MSK timezone) Game ends: February 9th, 2014 16:14 UTC Sign up: https://olympic-ctf.ru/ Prize set: 1500 USD, 1000 USD, 500 USD. Expect decent tasks. Twenty of them.

Jan
07

Sudden CTF syndrome

Happy new 2014 and merry Orthodox Christmas if you’re religious ;-D Maybe you already know hack you and hack you too, so I won’t even say that hack you is an individual CTF that we originally held for our university freshmen and opened it for everyone interested in the world. Couple days after this New… Continue reading »

Dec
18

RuCTFe rocks, iCTF is fine, rwthCTF are assholes

The traditional Winter Attack-Defense Spree is over, and what can I say…

Jun
17

Defcon CTF Quals 2013 – \xff\xe4\xcc 4 (penser)

good luck. penser.shallweplayaga.me:8273 http://assets-2013.legitbs.net/liabilities/penser Download penser binary » Summary: x86_64 Unicode-proof shellcoding.

Jun
17

Defcon CTF Quals 2013 – \xff\xe4\xcc 3 (linked)

typedef struct _llist { struct _llist *next; uint32_t tag; char data[100]; llist; and: register char *answer; char *(*func)(); llist *head; … func = (char *(*)(llist *))userBuf; answer = (char *)(*func)(head); send_string(answer); exit(0); Write me shellcode that traverses the randomly generated linked list, looking for a node with a tag 0x41414100, and returns a pointer to… Continue reading »

Jun
17

Defcon CTF Quals 2013 – All Web Challenges (3dub)

Summary: 3dub (1) – babysfirst: SQLite SQL injection 3dub (2) – badmedicine: Stream cipher bit flipping 3dub (3) – hypeman: Rack/Sinatra session secret disclosure 3dub (4) – rememberme: Bruteforce 3dub (5) – worsemedicine: Block cipher bit flipping

Feb
06

MSLC presents: Craptography Awards

Team More Smoked Leet Chicken proudly presentsCraptography Awards «You suck at crypto — we have an award for you!» Today’s Nominees

Oct
04

Announcing hackyou CTF

It’s fall already and that means the new CTF season is starting, and so is the new academic year in our university. This is the time when we want to attract more freshmen into our CTF tarpit ;-D So we are running – a CTF. But it’s not just for them. Wouldn’t it be fun… Continue reading »

Apr
19

Программа RuCTF

Feb
26

CodeGate 2012 Quals Forensic 500 Write-up

This file is Forensic file format which is generally used. Check the information of imaged DISK, find the GUIDs of every partition. Answer: strupr((part1_GUID) XOR (part2_GUID) XOR …) Download : B704361ACF90390C17F6103DF4811E2D Forensic 500 features EWF format container with EFI GPT partition table.

Feb
26

CodeGate 2012 Quals Vuln500 Write-up

1.234.41.7:22 ID : yesMan PWD : ohyeah123 Download vulnerable binary. Vuln500 was a hardened format-string vuln with ASLR, NX-stack, no-DTORs, RO .dynamic

Feb
26

CodeGate 2012 Quals Net400 Write-up

Because of vulnerability of site in Company A, database which contains user’s information was leaked. The file is dumped packet at the moment of attacking. Find the administrator’s account information which was leaked from the site. For reference, some parts of the packet was blind to XXXX. Answer : strupr(md5(database_name|table_name|decode(password_of_admin))) (‘|’is just a character) Download… Continue reading »

Feb
13

IFSF CTF #7 (X99) Write-up

this is one of their machines which have very sensitive informations , try to get for us the password 208.64.122.27 PORT : 3000 X99 carries a synthetic vulnerability that allows a char-by-char password bruteforce.

Older posts «