x86 – devel0pment.de

1. January 202124. January 2021

HACKvent20 writeup

This year’s HACKvent hosted on competition.hacking-lab.com has been as great as every year.
There was a total amount of 28 awesome challenges with varying difficulties.

1. January 20201. January 2020

This year’s HACKvent was hosted on the brand new Hacking-Lab 2.0 plattform. Each day from the 1st of december until the 24th a new challenge is published raising in difficulty. The flag format changed from HV18-xxxx-xxxx-xxxx-xxxx-xxxx to HV19{...}. After all I managed to solve all 28 challenges 🙂

	Hidden
HV19.H1 Hidden One HV19.H2 Hidden Two HV19.H3 Hidden Three HV19.H4 Hidden Four
	Easy
HV19.01 censored HV19.02 Triangulation HV19.03 Hodor, Hodor, Hodor HV19.04 password policy circumvention HV19.05 Santa Parcel Tracking HV19.06 bacon and eggs HV19.07 Santa Rider
	Medium
HV19.08 SmileNcryptor 4.0 HV19.09 Santas Quick Response 3.0 HV19.10 Guess what HV19.11 Frolicsome Santa Jokes API HV19.12 back to basic HV19.13 TrieMe HV19.14 Achtung das Flag
	Hard
HV19.15 Santa’s Workshop HV19.16 B0rked Calculator HV19.17 Unicode Portal HV19.18 Dance with me HV19.19 U+1F385 HV19.20 i want to play a game HV19.21 Happy Christmas 256
	Leet
HV19.22 The command … is lost HV19.23 Internet Data Archive HV19.24 ham radio

Continue reading “HACKvent19 writeup”

15. July 2018

Meepwn CTF Quals 2018 – babysandbox

The Meepwn CTF Quals 2018 (ctftime.org) ran from 13/07/2018, 19:00 UTC to 15/07/2018 19:00 UTC.

There were a lot of interesting-looking challenges. As always, time was the limiting factor 😉 I managed to spend 2 hours on saturday morning solving the pwn challenge babysandbox.

Continue reading “Meepwn CTF Quals 2018 – babysandbox”

22. May 2018

Hacky Easter 2018 writeup

As every year hacking-lab.com carried out the annual Hacky Easter event with 27 challenges. I could not spend as much time as I would have liked to on solving the challenges, but after all I managed to collect 25 of the 27 eggs and focused on this writeup.

	Easy
01 Prison Break 02 Babylon 03 Pony Coder 04 Memeory 05 Sloppy & Paste (mobile) 06 Cooking for Hackers 07 Jigsaw 08 Disco Egg 09 Dial Trial (mobile)
	Medium
10 Level Two 11 De Egg you must (not solved) 12 Patience (mobile) 13 Sagittarius… 14 Same same… 15 Manila greetings 16 git cloak –hard 17 Space Invaders 18 Egg Factory
	Hard
19 Virtual Hen 20 Artist: No Name Yet (not solved) 21 Hot Dog 22 Block Jane 23 Rapbid Learning 24 ELF
	Hidden
25 Hidden Egg #1 26 Hidden Egg #2 27 Hidden Egg #3

Continue reading “Hacky Easter 2018 writeup”

10. March 201820. May 2018

RPISEC/MBE: writeup lab09 (C++)

In the last lab we focused on Misc and Stack Cookies. In this next to last lab some characteristics when dealing with C++ are introduced.

The lab contains only two levels:
–> lab9C
–> lab9A

Continue reading “RPISEC/MBE: writeup lab09 (C++)”

2. March 201820. May 2018

RPISEC/MBE: writeup lab08 (Misc and Stack Cookies)

While the last lab introduced the subject of Heap Exploitation, this lab focuses on Misc and Stack Cookies.

The lab contains three levels again ranging from C to A:
–> lab8C
–> lab8B
–> lab8A

Continue reading “RPISEC/MBE: writeup lab08 (Misc and Stack Cookies)”

26. February 201820. May 2018

TAMUctf 18 – writeup pwn1-5

The Texas A&M University CTF (ctftime.org) ran for over one week from 17/02/2018, 00:00 UTC to 26/02/2018 00:00 UTC. There have been a lot of challenges starting at a very easy difficulty.

I did the five pwn challenges ranging from 25 to 200 points:
–> pwn1 (25 pts)
–> pwn2 (50 pts)
–> pwn3 (75 pts)
–> pwn4 (125 pts)
–> pwn5 (200 pts)

Continue reading “TAMUctf 18 – writeup pwn1-5”

23. February 201820. May 2018

RPISEC/MBE: writeup lab07 (Heap Exploitation)

After we have introduced ASLR and ways to bypass it in the last writeup, we will expand our exploits to the Heap in this lab.

In this lab there are only two levels:
–> lab7C
–> lab7A

Continue reading “RPISEC/MBE: writeup lab07 (Heap Exploitation)”

16. February 201820. May 2018

RPISEC/MBE: writeup lab06 (ASLR)

The previous lab focused on the subject of return oriented programming in order to circumvent data execution prevention. The next lab described in this writeup introduces ASLR.

The single levels of this lab range from C to A:
–> lab6C
–> lab6B
–> lab6A

Note: ASLR should be enabled by now.

Continue reading “RPISEC/MBE: writeup lab06 (ASLR)”

9. February 201822. April 2019

RPISEC/MBE: writeup lab05 (DEP and ROP)

In the last writeup we used different format string vulnerabilites in order to exploit the provided binaries. This writeup continues with lab05 which introduces DEP and ROP.

As usual there are three levels ranging from C to A:
–> lab5C
–> lab5B
–> lab5A

Continue reading “RPISEC/MBE: writeup lab05 (DEP and ROP)”