Jun
17

Defcon CTF Quals 2013 – All Web Challenges (3dub)

Summary: 3dub (1) – babysfirst: SQLite SQL injection 3dub (2) – badmedicine: Stream cipher bit flipping 3dub (3) – hypeman: Rack/Sinatra session secret disclosure 3dub (4) – rememberme: Bruteforce 3dub (5) – worsemedicine: Block cipher bit flipping

Oct
02

rwth2011 CTF – mastermind

Mastermind was an easy service, written on Ruby. Download (mmd.rb and mmd.db) Summary: SQL Injection, guessable id’s, guessable flag (by id)