NUS Greyhats at CDDC 2015 and (Almost) Epic Mass Exploitation
The Cyber Defenders Discovery Camp 2015 is an introductory computer security workshop slash competition targeted at students at the JC and IHL levels. This i...
Stickied Posts
Recent Posts
32C3CTF - Kummerkasten (Web 300)
Steal the password and TOTP token from an admin using cross-site scripting.
32C3CTF - Gurke (Misc 300)
Remote code execution in a seccomp protected python service requiring manipulating python internals to retrieve the flag in memory.
32C3CTF - Forth (Pwn 150)
Remote code execution with a code injection vulnerability in a Forth interpreter.
Hack.lu CTF 2015 - Creative Cheating (Crypto 150)
Analyse a given PCAP for some secret communication between Alice and Bob and determine which messages contain a valid signature.
HITCON 2015 Qualifiers - Piranha Gun (Stego)
Directory contents are hidden with a mount.
HITCON 2015 Qualifiers - Hard to Say (Misc)
Execute arbitrary non-alphanumeric ruby code with length limitations.
ASIS CTF Finals 2015 - Shop 1 (Pwn)
An off-by-one error allows an attacker to leak return codes from memcmp to determine the difference in the supplied byte and the compared byte to leak the fl...