| 일 | 월 | 화 | 수 | 목 | 금 | 토 |
|---|---|---|---|---|---|---|
| 1 | 2 | 3 | 4 | 5 | 6 | |
| 7 | 8 | 9 | 10 | 11 | 12 | 13 |
| 14 | 15 | 16 | 17 | 18 | 19 | 20 |
| 21 | 22 | 23 | 24 | 25 | 26 | 27 |
| 28 | 29 | 30 |
- h4cking game
- hacking game
- KAIST
- Buffer Overflow
- ctf player
- 해킹
- reversing
- hacking
- 워게임
- pwnable
- CTF
- webhacking.kr
- webhacking
- cryptography
- TeamH4C
- writeup
- dreamhack
- Wargame
- Gon
- typhooncon
- christmas ctf
- Wreckctf
- crypto
- WEB
- 웹해킹
- System Hacking
- hack
- got overwrite
- 2022 Fall GoN Open Qual CTF
- python
- Today
- Total
목록wargame writeup | hint (2)
deayzl's blog
[Webhacking.kr] Orange 🍊 (hint) (feat. a new era of SSRF + php-src parse_url c code analyze)
writeup 이라기 보단 hint 를 써놓도록 하겠다. 처음 이 문제를 풀 때 도움이 됐던 것은 PHP SSRF Techniques. How to bypass filter_var()… | by theMiddle | secjuice™ | Medium PHP SSRF Techniques How to bypass filter_var(), preg_match() and parse_url() medium.com A New Era of SSRF - Exploiting URL Parser in Trending Programming Lan… (slideshare.net) A New Era of SSRF - Exploiting URL Parser in Trending Programming Lan… We propose ..
[RootMe] LaTeX - Input
There's no writeup for latex - input challenge found so I'm writing writeup. (This challenge is even 10 points easy one) But i won't just let you know the full path to flag. I hope you struggle like i did. #!/usr/bin/env bash if [[ $# -ne 1 ]]; then echo "Usage : ${0} TEX_FILE" fi if [[ -f "${1}" ]]; then TMP=$(mktemp -d) cp "${1}" "${TMP}/main.tex" # Compilation echo "[+] Compilation ..." timeo..