Dev HTTPS PORTE IO NEWFPASS 1114053 9C30DCC449F9C29AC359D7FCEC2EA7B6 JumpCloud is a Directory as a Service provider providing cloud native Directory service for cloud native companies. In a Red Team engagement or Pentest scenario, one may come across a API token which
CTF API PYTHON GATE IO UPDATE: This writeup was hidden since 2019 due to the solution used. It was only recently where I released a CTF challenge using the same solution. Since it was solved, I decided that
CTF TUTORIEL GATEIO Gunship This challenge is an AST injection challenge. const path = require('path'); const express = require('express'); const handlebars = require('handlebars'); const { unflatten } = require('flat'); const router = express.Router(); router.get('/', (req,
CTF PORTE MÉTAHÉROS IO PHP can be interesting. I recently came across an interesting web CTF challenge. It is unfortunate that I am not able to show the beautiful screen shots of the challenge. What I have
Dev PORTE IO IOS Inspired by my previous adventures and my recent Go encounters, here is my attempt to start something. A git directory finder on web roots written in go. Still a work in progress... https:
Blog FRAIS PORTAIL I have recently disclosed a couple of websites with issues relating to exposed .env and exposed .git web resources. Theses websites belongs to reputable local companies. To make matters worse, one of it
Blog ARCBLOCK GATEIO ROI The qualifers was a team based pentesting CTF, and it requires the knowledge of Windows and Linux systems, enumeration, privilege escalation, and lateral movement. Targets: 10.10.110.3 (Domain Controller for catalyst.
COMMENT ACHETER ET VENDRE SUR GATE IO Inspection Head over to the link below to find the flag. https://expect-glugctf.netlify.com/ This is a typical HTML source code view flag. Viewing source will give you the flag. <div&
Blog DÉPÔT BANCAIRE GATE.IO A file upload web challenge during the recent noxCTF 2018. The following was presented: Uploading a file without extensions would give us this: It appears that the code checks for extensions .png .jpg
Blog PORTE DE DÉMARRAGE IO I have always been fascinated by how chat bots work! With the trend of the telegram phone app being popular among students, Chat Bots have become a new medium for application interaction. From
Blog GRAPHIQUES DU FORUM GATEIO It starts with a "what if? What if I could achieve it?". According to many, OSCP is one of the hardest out there. No Metasploit, No automatic tools. Just plain old
Blog CETTE PORTE DE CARBURANT.IO I finally have the luxury of time to learn new things, in which I decided to beef up some of my cryptography knowledge. A basic cryptography category in which certain CTFs present is
Dev COMMENT ACHETER SUR GATE.IO DISCLAIMER: NO OFFENSIVE ACTIONS WERE DONE, CODES ARE PURELY FOR EDUCATION PURPOSE OF WHAT PYTHON CAN DO. Background Inspired by a friend who asked if it was possible to get historical data of
Dev L'HISTOIRE DE BALDUR'S GATE II Sometime ago I participated in a security comeptition where we are required to attack and defend servers. The key was to capture flags upon successful root/system exploitation. I did some recon on
Dev HTTPS PORTE IO ACTIF 1589741 61FDE322E0DF2ED2AA8DDDCAFE1CE912 Python Web Scanner (PWS) Version 1.0.1 This project was inspired by a bored afternoon after getting root on a vulnhub vm. This python script was developed on Python 3. (Not meant
CTF GATEIO TBAR Crossctf 2018 Qualifier Writeups Credits to my teammates: https://github.com/tankeehock and https://github.com/tohzijie Web QruirkyScript 1 - 5 were do-able by referncing the truthy table from: https://developer.mozilla.
CTF GATEIO EST-IL UNE SOCIÉTÉ AMÉRICAINE ? Well. What better way to spend christmas than solving a VulbHub machine? This VM is built for beginner/intermediate difficulty level. Link to LazySysAdmin on VulnHub. I spent about two days on this,
Blog PIÈCES À PUBLIER SUR GATE IO When I was first introduced to CTF, I know nothing about it. I was just a mere script kiddie. (skiddie? I think I still am one..) I was introduced to jeopardy style CTF
Blog FORMATION D'ÉCHANGE GATEIO Hello readers. I go by the name Gladitor on CTFtime.org. I'm new to CTF, and this blog would be the place where I will documenting my adventures and personal write ups. My