Pwn
2

Nana told me that buffer overflow is one of the most common software vulnerability. Is…

Pwn
0

Daddy told me about cool MD5 hash collision today. I wanna do something like that…

Reverse
0

用IDA分析这个bomb,先看main,发现先call了initialize_bomb这个函数,主要是用来获取hostname,检查是否在服务器端运行。所以先把这个函数调用nop掉。 接着分析,bomb一共6个关卡,和一个隐藏关。可以发现在每次过关后会调用phase_defused函数,里面首先调用了send_msg,这个是用来连接教师端,记录答题状态,所以也nop掉。 这样bomb就可以在本地linux运行调试了。

Pwn
0

Mommy! what is a file descriptor in Linux? * try to play the wargame your…

Writeup
0

综合各战队和官方的wp… 官方writeup: http://www.freebuf.com/articles/web/121778.html FlappyPig的writeup: http://bobao.360.cn/ctf/detail/179.html l3m0n师傅的web writeup: http://www.cnblogs.com/iamstudy/articles/2016_hctf_web_writeup.html

Tip
0

MacOS owners who are comfortable with the terminal app can use the following command to…