AESWCM

HTB UniCTF 2022. Crypto. Medium

7 minutes to read

Custom encryption using AES and XOR. Bad padding implementation

Bank-er-smith

HTB UniCTF 2022. Crypto. Easy

7 minutes to read

RSA known bits. Coppersmith method. LLL lattice reduction

BatchCraft Potions

HTB UniCTF 2022. Web. Medium

22 minutes to read

GraphQL batching attack. OTP and rate limit bypass. JWT. CSP. DOM Clobbering. XSS

Curse Breaker

HTB UniCTF 2022. Reversing. Medium

14 minutes to read

seccomp rules. Differential encoding

Fake News

HTB UniCTF 2022. Forensics. Easy

3 minutes to read

PHP and JavaScript deobfuscation. Disc image inspection

Potion Master

HTB UniCTF. Reversing. Easy

8 minutes to read

Functional programming in Haskell. z3 solver

Sacred Scrolls

HTB UniCTF 2022. Pwn. Easy

17 minutes to read

64-bit binary. Buffer Overflow. ret2libc

Sacred Scrolls' Revenge

HTB UniCTF 2022. Pwn. Easy

4 minutes to read

64-bit binary. Buffer Overflow. ret2libc

Spellbook

HTB UniCTF 2022. Pwn. Medium

19 minutes to read

64-bit binary. Heap exploitation. Use After Free. Fast Bin attack

The Magic Informer

HTB UniCTF 2022. Web. Easy

16 minutes to read

Directory Traversal. Local File Read. JWT. Broken Access Control. SSRF. Command Injection. RCE