Recent posts
Deep Analysis of Ryuk Ransomware
Ryuk has been know to be a part of a bigger "Triple Threat" attack that involves Emotet and TrickBot. The first stage...
Pwnable.kr - asm
This challenge is asking for x64 shellcode to read the flag file, it's using some `seccomp rules` to limit us to only...
Pwnable.kr - uaf
If you don't know enough about these topics or need a refresher, see the references at the end. This challenge is abo...
Pwnable.kr - cmd2
This challenge has more restrictions, the biggest one is filtering forward slash `/`, this will prevent us from execu...
Pwnable.kr - cmd1
The next two challenges (cmd1 and cmd2) are about bypassing input filters to execute a command. First it changes the ...
Pwnable.kr - lotto
The game asks for 6 bytes and compares them with 6 random bytes in the range [1-45], if the number of matches is 6 we...
Pwnable.kr - blackjack
In this challenge we have a simple blackjack game source code and we have to find a bug in it that will make us milli...
Pwnable.kr - coin1
In this challenge we are not given any binary or source code, it's just a netcat connection: $ nc pwnable.kr 9007...