| 일 | 월 | 화 | 수 | 목 | 금 | 토 |
|---|---|---|---|---|---|---|
| 1 | 2 | 3 | 4 | 5 | ||
| 6 | 7 | 8 | 9 | 10 | 11 | 12 |
| 13 | 14 | 15 | 16 | 17 | 18 | 19 |
| 20 | 21 | 22 | 23 | 24 | 25 | 26 |
| 27 | 28 | 29 | 30 |
- writeup
- reversing
- deayzl
- Buffer Overflow
- got overwrite
- TeamH4C
- hacking game
- Wreckctf
- dreamhack
- webhacking.kr
- h4cking game
- Wargame
- 2022 Fall GoN Open Qual CTF
- hacking
- pwnable
- cryptography
- 워게임
- christmas ctf
- hack
- crypto
- KAIST
- System Hacking
- python
- webhacking
- WEB
- CTF
- ctf player
- Gon
- 웹해킹
- 해킹
- Today
- Total
목록wargame writeup | hint (2)
deayzl's blog
[Webhacking.kr] Orange 🍊 (hint) (feat. a new era of SSRF + php-src parse_url c code analyze)
writeup 이라기 보단 hint 를 써놓도록 하겠다. 처음 이 문제를 풀 때 도움이 됐던 것은 PHP SSRF Techniques. How to bypass filter_var()… | by theMiddle | secjuice™ | Medium PHP SSRF Techniques How to bypass filter_var(), preg_match() and parse_url() medium.com A New Era of SSRF - Exploiting URL Parser in Trending Programming Lan… (slideshare.net) A New Era of SSRF - Exploiting URL Parser in Trending Programming Lan… We propose ..
[RootMe] LaTeX - Input
There's no writeup for latex - input challenge found so I'm writing writeup. (This challenge is even 10 points easy one) But i won't just let you know the full path to flag. I hope you struggle like i did. #!/usr/bin/env bash if [[ $# -ne 1 ]]; then echo "Usage : ${0} TEX_FILE" fi if [[ -f "${1}" ]]; then TMP=$(mktemp -d) cp "${1}" "${TMP}/main.tex" # Compilation echo "[+] Compilation ..." timeo..