Recent posts

MemLabs - Lab3

A malicious script encrypted a very secret piece of information I had on my system. Can you recover the information f...

3 minute read

MemLabs - Lab2

One of the clients of our company, lost the access to his system due to an unknown error. He is supposedly a very po...

2 minute read

MemLabs - Lab1

MemLabs is an educational, introductory set of CTF-styled challenges which is aimed to encourage students, security r...

4 minute read

Deep Analysis of Ryuk Ransomware

Ryuk has been know to be a part of a bigger "Triple Threat" attack that involves Emotet and TrickBot. The first stage...

13 minute read

Pwnable.kr - asm

This challenge is asking for x64 shellcode to read the flag file, it's using some `seccomp rules` to limit us to only...

2 minute read

Pwnable.kr - uaf

If you don't know enough about these topics or need a refresher, see the references at the end. This challenge is abo...

4 minute read

Pwnable.kr - cmd2

This challenge has more restrictions, the biggest one is filtering forward slash `/`, this will prevent us from execu...

1 minute read

Pwnable.kr - cmd1

The next two challenges (cmd1 and cmd2) are about bypassing input filters to execute a command. First it changes the ...

1 minute read