Bugs_Bunny CTF 2017 -Pwn50

Walkthrough the Solution of Pwn50 challenge

Hello guys, Welcome to my first writeup. challenge: pwn50 we are given a binary and asked to pwn. My general procedure is to examine for BOF, FSB. First i run the binary Then use objdump to see the functions and the calls Then use gdb-peda to analyse the flow and registers and stacks. Now, lets examine it. file pwn50 : strings pwn50 : checksec pwn50 : Information gathered: [Read More]

Bugs_Bunny CTF 2017 -Pwn150

s

Hello guys, This writeup is for _ the bugs_bunny CTF 2017 _ pwn series. challenge: pwn150 first 3 steps: file : strings : checksec : Informations Gathered:   Its a 64-bit binary with NX enabled and the elf contains "/bin/date" and a call to system()   Two functions other than main: Hello and today. why it matters: * 64-bit : Parameters have to be passed in registers. [Read More]

Bugs_Bunny CTF 2017 -Pwn200

Walkthrough the solution

Hi guys, this writeup is for the _ bugs_bunny CTF 2017 pwn series _. challenge: pwn200 The traditional three steps: 1. file 2. strings: 3. checksec: Information gathered:  pwn200 is a 32-bit binary and has no Security measures enabled. Not even NX, which enables Shellcode Injection.  LIBC functions read and puts are used in ELF. Now, we run the binary: ./pwn200 Guys, please dont make all challenges on Buffer Overflows [Read More]

Flake it till you make it

Excerpt from Soulshaping by Jeff Brown

Under what circumstances should we step off a path? When is it essential that we finish what we start? If I bought a bag of peanuts and had an allergic reaction, no one would fault me if I threw it out. If I ended a relationship with a woman who hit me, no one would say that I had a commitment problem. But if I walk away from a seemingly secure route because my soul has other ideas, I am a flake? [Read More]

Test markdown

Each post also has a subtitle

You can write regular markdown here and Jekyll will automatically convert it to a nice webpage. I strongly encourage you to take 5 minutes to learn how to write in markdown - it’ll teach you how to transform regular text into bold/italics/headings/tables/etc. Here is some bold text Here is a secondary heading Here’s a useless table: Number Next number Previous number Five Six Four Ten Eleven Nine Seven Eight Six Two Three One How about a yummy crepe? [Read More]

To be

... or not to be?

To be, or not to be–that is the question: Whether ‘tis nobler in the mind to suffer The slings and arrows of outrageous fortune Or to take arms against a sea of troubles And by opposing end them. To die, to sleep– No more–and by a sleep to say we end The heartache, and the thousand natural shocks That flesh is heir to. ‘Tis a consummation Devoutly to be wished. To die, to sleep– To sleep–perchance to dream: ay, there’s the rub, For in that sleep of death what dreams may come When we have shuffled off this mortal coil, Must give us pause. [Read More]

Dear diary

What is it with that Mary girl? Dragging me to school every day. As if I had a choice. What you don’t hear in those nursery rhymes is that she starves me if I don’t go to school with her; it’s the only way I can stay alive! I’m thinking about being adopted by Little Bo Peep, sure I may get lost, but anything is better than being with Mary and those little brats at school (shudder, shudder). [Read More]

Soccer

Best sport ever!

From Wikipedia: Association football, more commonly known as football or soccer,[2] is a sport played between two teams of eleven players with a spherical ball. It is played by 250 million players in over 200 countries, making it the world’s most popular sport.[3][4][5][6] The game is played on a rectangular field with a goal at each end. The object of the game is to score by getting the ball into the opposing goal. [Read More]

Pirates arrrr

Piracy is typically an act of robbery or criminal violence at sea. The term can include acts committed on land, in the air, or in other major bodies of water or on a shore. It does not normally include crimes committed against persons traveling on the same vessel as the perpetrator (e.g. one passenger stealing from others on the same vessel). The term has been used throughout history to refer to raids across land borders by non-state agents. [Read More]