-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathindex4.html
377 lines (322 loc) · 18.5 KB
/
index4.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>chmod +x singularity.sh</title>
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta name="description" content="">
<meta name="author" content="Marina von Steinkirch">
<!-- Le styles -->
<link rel="stylesheet" href="./theme/css/bootstrap.dark.css" type="text/css" />
<style type="text/css">
body {
padding-top: 60px;
padding-bottom: 40px;
}
.tag-1 {
font-size: 13pt;
}
.tag-2 {
font-size: 11pt;
}
.tag-2 {
font-size: 10pt;
}
.tag-4 {
font-size: 8pt;
}
</style>
<link href="./theme/css/bootstrap-responsive.dark.css" rel="stylesheet">
<link href="./theme/css/font-awesome.css" rel="stylesheet">
<link href="./theme/css/pygments.css" rel="stylesheet">
<!-- Le fav and touch icons -->
<link rel="shortcut icon" href="./theme/images/favicon.ico">
<link rel="apple-touch-icon" href="./theme/images/apple-touch-icon.png">
<link rel="apple-touch-icon" sizes="72x72" href="./theme/images/apple-touch-icon-72x72.png">
<link rel="apple-touch-icon" sizes="114x114" href="./theme/images/apple-touch-icon-114x114.png">
<link href="./feeds/all.atom.xml" type="application/atom+xml" rel="alternate" title="chmod +x singularity.sh ATOM Feed" />
</head>
<body>
<div class="navbar navbar-fixed-top">
<div class="navbar-inner">
<div class="container-fluid">
<a class="btn btn-navbar" data-toggle="collapse" data-target=".nav-collapse">
<span class="icon-bar"></span>
<span class="icon-bar"></span>
<span class="icon-bar"></span>
</a>
<a class="brand" href="./index.html">chmod +x singularity.sh </a>
<div class="nav-collapse">
<ul class="nav">
<li class="divider-vertical"></li>
<ul class="nav pull-right">
<li><a href="./authors.html">About</a></li>
<li><a href="./archives.html"><b>Archives</b></a></li>
<li>
<a href="https://github.com/bt3gl">github
<!--<i class="icon-github-sign icon-large" ></i>-->
</a></li>
<li>
<a href="https://twitter.com/1bt337">
<!--<i class="icon-twitter-sign icon-large"></i> -->
twitter
</a></li>
<li><a href="http://bt3gl.github.io/projects_page/index.html">Bygone Playful Times
</a></li>
</ul>
</ul>
<!--<p class="navbar-text pull-right">Logged in as <a href="#">username</a></p>-->
</div><!--/.nav-collapse -->
</div>
</div>
</div>
<div class="container-fluid">
<div class="row">
<div class="span9" id="content">
<div class="article">
<h1><a href="./smashing-the-stack-for-fun-or-wargames-narnia-0-4.html">Smashing the Stack for Fun or WarGames - Narnia 0-4</a></h1>
<div class="well small"><footer class="post-info">
<abbr class="published" title="2014-10-06T06:30:00">
Mon 06 October 2014 </abbr>
<span class="label"> Category</span>
<a href="./category/vulnerabilities.html"><i class="icon-folder-open"></i>Vulnerabilities</a>
<span class="label">Tags</span>
<a href="./tag/buffer_overflow.html"><i class="icon-tag"></i>Buffer_Overflow</a>
<a href="./tag/stack_overflow-nop.html"><i class="icon-tag"></i>Stack_Overflow NOP</a>
<a href="./tag/c.html"><i class="icon-tag"></i>C</a>
<a href="./tag/assembly.html"><i class="icon-tag"></i>Assembly</a>
<a href="./tag/gdb.html"><i class="icon-tag"></i>gdb</a>
<a href="./tag/wargames.html"><i class="icon-tag"></i>Wargames</a>
<a href="./tag/linux.html"><i class="icon-tag"></i>Linux</a>
</footer><!-- /.post-info --></div>
<div class="summary"><p>One of my mentors, <a href="https://twitter.com/OwariDa"> <strong>Joel Eriksson</strong></a>, suggested the quintessential <strong><a href="http://overthewire.org/wargames">WarGames</a></strong>, a collection of <strong>Security problems</strong>, divided into 14 interesting titles. I have been playing the games since last week and they are awesome! To play the WarGames you SSH to their servers with a login that indicates your current level ...</p>
<a class="btn primary xsmall" href="./smashing-the-stack-for-fun-or-wargames-narnia-0-4.html">more ...</a>
</div>
</div>
<hr />
<div class="article">
<h1><a href="./thats-what-love-looks-like.html">That's What Love Looks Like</a></h1>
<div class="well small"><footer class="post-info">
<abbr class="published" title="2014-10-06T00:50:00">
Mon 06 October 2014 </abbr>
<span class="label"> Category</span>
<a href="./category/lifeuniverseeverything.html"><i class="icon-folder-open"></i>Life,Universe,Everything</a>
<span class="label">Tags</span>
<a href="./tag/hope.html"><i class="icon-tag"></i>Hope</a>
<a href="./tag/love.html"><i class="icon-tag"></i>Love</a>
</footer><!-- /.post-info --></div>
<div class="summary"><p>I'm talking about this day that was all about <strong>love</strong>.</p>
<p>I am not actually talking, I'm showing my pictures.</p>
<p>The <a href="http://en.wikipedia.org/wiki/People's_Climate_March">People's Climate March</a>, which happened a couple of weeks ago in NYC, filled my veins with <strong>hope</strong>. No words are able to express what each of these ...</p>
<a class="btn primary xsmall" href="./thats-what-love-looks-like.html">more ...</a>
</div>
</div>
<hr />
<div class="article">
<h1><a href="./setting-up-a-playing-environment-with-virtual-machines.html">Setting up a Playing Environment with Virtual Machines</a></h1>
<div class="well small"><footer class="post-info">
<abbr class="published" title="2014-10-03T04:30:00">
Fri 03 October 2014 </abbr>
<span class="label"> Category</span>
<a href="./category/lifeuniverseeverything.html"><i class="icon-folder-open"></i>Life,Universe,Everything</a>
<span class="label">Tags</span>
<a href="./tag/vmware.html"><i class="icon-tag"></i>VMWare</a>
</footer><!-- /.post-info --></div>
<div class="summary"><hr />
<h2>Further References:</h2>
<a class="btn primary xsmall" href="./setting-up-a-playing-environment-with-virtual-machines.html">more ...</a>
</div>
</div>
<hr />
<div class="article">
<h1><a href="./understanding-the-shellshock-vulnerability.html">Understanding the Shellshock Vulnerability</a></h1>
<div class="well small"><footer class="post-info">
<abbr class="published" title="2014-10-01T12:21:00">
Wed 01 October 2014 </abbr>
<span class="label"> Category</span>
<a href="./category/vulnerabilities.html"><i class="icon-folder-open"></i>Vulnerabilities</a>
<span class="label">Tags</span>
<a href="./tag/shellshock.html"><i class="icon-tag"></i>Shellshock</a>
<a href="./tag/bash.html"><i class="icon-tag"></i>Bash</a>
<a href="./tag/command_injection.html"><i class="icon-tag"></i>Command_Injection</a>
</footer><!-- /.post-info --></div>
<div class="summary"><p><img alt="" src="http://i.imgur.com/kjkWTWV.png" /></p>
<p>Almost a week ago, a new (<a href="http://blog.erratasec.com/2014/09/shellshock-is-20-years-old-get-off-my.html">old</a>) type of <a href="http://cwe.mitre.org/data/definitions/78.html">OS command Injection</a> was reported. The <strong>Shellshock</strong> vulnerability, also know as <strong><a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6271">CVE-2014-6271</a></strong>, allows attackers to inject their own code into <a href="http://www.gnu.org/software/bash/">Bash</a> using specially crafted <strong>environment variables</strong>, and it was disclosed with the following description:</p>
<div class="highlight"><pre> <span class="nx">Bash</span> <span class="nx">supports</span> <span class="nx">exporting</span> <span class="nx">not</span> <span class="nx">just</span> <span class="nx">shell</span> <span class="nx">variables ...</span></pre></div>
<a class="btn primary xsmall" href="./understanding-the-shellshock-vulnerability.html">more ...</a>
</div>
</div>
<hr />
<div class="article">
<h1><a href="./csaw-ctf-2014-forensics-300-fluffy-no-more.html">CSAW CTF 2014 - Forensics 300: "Fluffy No More"</a></h1>
<div class="well small"><footer class="post-info">
<abbr class="published" title="2014-09-28T11:21:00">
Sun 28 September 2014 </abbr>
<span class="label"> Category</span>
<a href="./category/forensics.html"><i class="icon-folder-open"></i>Forensics</a>
<span class="label">Tags</span>
<a href="./tag/ctf.html"><i class="icon-tag"></i>CTF</a>
<a href="./tag/csaw.html"><i class="icon-tag"></i>CSAW</a>
<a href="./tag/hashcat.html"><i class="icon-tag"></i>hashcat</a>
<a href="./tag/pdf-parser.html"><i class="icon-tag"></i>pdf-parser</a>
<a href="./tag/qpdf.html"><i class="icon-tag"></i>qpdf</a>
<a href="./tag/lamp.html"><i class="icon-tag"></i>LAMP</a>
<a href="./tag/javascript.html"><i class="icon-tag"></i>JavaScript</a>
</footer><!-- /.post-info --></div>
<div class="summary"><p>This is the fourth and the last of the forensics challenge in the CSAW CTF 2014 competition. It was much harder than the three before, but it was also much more interesting.</p>
<p>The challenge starts with the following text:</p>
<blockquote>
<p>OH NO WE'VE BEEN HACKED!!!!!! -- said the Eye Heart Fluffy ...</p></blockquote>
<a class="btn primary xsmall" href="./csaw-ctf-2014-forensics-300-fluffy-no-more.html">more ...</a>
</div>
</div>
<hr />
<div class="article">
<h1><a href="./the-sharif-university-ctf-2014.html">The Sharif University CTF 2014</a></h1>
<div class="well small"><footer class="post-info">
<abbr class="published" title="2014-09-26T04:20:00">
Fri 26 September 2014 </abbr>
<span class="label"> Category</span>
<a href="./category/reverse-engineering.html"><i class="icon-folder-open"></i>Reverse Engineering</a>
<span class="label">Tags</span>
<a href="./tag/ctf.html"><i class="icon-tag"></i>CTF</a>
<a href="./tag/steganography.html"><i class="icon-tag"></i>Steganography</a>
<a href="./tag/jad.html"><i class="icon-tag"></i>jad</a>
<a href="./tag/outguess.html"><i class="icon-tag"></i>OutGuess</a>
</footer><!-- /.post-info --></div>
<div class="summary"><p>It looked like a fun CTF, but I did not have the chance to play for too long. I managed to solve a few problems in the morning and the solutions are below.</p>
<h2>Avatar: Steganography</h2>
<p>The challenge starts with:</p>
<blockquote>
<p>A terrorist has changed his picture in a social network. What ...</p></blockquote>
<a class="btn primary xsmall" href="./the-sharif-university-ctf-2014.html">more ...</a>
</div>
</div>
<hr />
<div class="article">
<h1><a href="./csaw-ctf-2014-reverse-engineering-100-eggshells.html">CSAW CTF 2014 - Reverse Engineering 100: "eggshells"</a></h1>
<div class="well small"><footer class="post-info">
<abbr class="published" title="2014-09-22T09:20:00">
Mon 22 September 2014 </abbr>
<span class="label"> Category</span>
<a href="./category/reverse-engineering.html"><i class="icon-folder-open"></i>Reverse Engineering</a>
<span class="label">Tags</span>
<a href="./tag/ctf.html"><i class="icon-tag"></i>CTF</a>
<a href="./tag/csaw.html"><i class="icon-tag"></i>CSAW</a>
<a href="./tag/uncompyle2.html"><i class="icon-tag"></i>uncompyle2</a>
</footer><!-- /.post-info --></div>
<div class="summary"><p>This is the first exploitation problem and it starts with the following text:</p>
<blockquote>
<p>I trust people on the Internet all the time, do you?</p>
<p>Written by ColdHeat</p>
<p>eggshells-master.zip</p>
</blockquote>
<h2>Unzipping and Analyzing the Files</h2>
<p>Let’s unzip the provided zip file:</p>
<div class="highlight"><pre><span class="nv">$ </span>unzip eggshells-master.zip
</pre></div>
<p>This creates a directory called <em>eggshells-master ...</em></p>
<a class="btn primary xsmall" href="./csaw-ctf-2014-reverse-engineering-100-eggshells.html">more ...</a>
</div>
</div>
<hr />
<div class="article">
<h1><a href="./csaw-ctf-2014-networking-100-big-data.html">CSAW CTF 2014 - Networking 100: "Big Data"</a></h1>
<div class="well small"><footer class="post-info">
<abbr class="published" title="2014-09-22T08:20:00">
Mon 22 September 2014 </abbr>
<span class="label"> Category</span>
<a href="./category/networking.html"><i class="icon-folder-open"></i>Networking</a>
<span class="label">Tags</span>
<a href="./tag/ctf.html"><i class="icon-tag"></i>CTF</a>
<a href="./tag/csaw.html"><i class="icon-tag"></i>CSAW</a>
<a href="./tag/wireshark.html"><i class="icon-tag"></i>Wireshark</a>
<a href="./tag/chaosreader.html"><i class="icon-tag"></i>Chaosreader</a>
</footer><!-- /.post-info --></div>
<div class="summary"><p>This is the only networking problem, and it is only 100 points, so it turned out to be very easy.</p>
<p>The problem starts with the following text:</p>
<blockquote>
<p>Something, something, data, something, something, big</p>
<p>Written by HockeyInJune</p>
<p><a href="https://github.com/ctfs/write-ups/blob/master/csaw-ctf-2014/big-data/pcap.pcapng">pcap.pcapng</a></p>
</blockquote>
<h2>Inspecting the Wireshark File</h2>
<p>The file extension <a href="https://appliance.cloudshark.org/blog/5-reasons-to-move-to-pcapng/">.pcapng</a> correspond to files for ...</p>
<a class="btn primary xsmall" href="./csaw-ctf-2014-networking-100-big-data.html">more ...</a>
</div>
</div>
<hr />
<div class="article">
<h1><a href="./csaw-ctf-2014-forensics-200-obscurity.html">CSAW CTF 2014 - Forensics 200: "Obscurity"</a></h1>
<div class="well small"><footer class="post-info">
<abbr class="published" title="2014-09-22T07:20:00">
Mon 22 September 2014 </abbr>
<span class="label"> Category</span>
<a href="./category/forensics.html"><i class="icon-folder-open"></i>Forensics</a>
<span class="label">Tags</span>
<a href="./tag/ctf.html"><i class="icon-tag"></i>CTF</a>
<a href="./tag/csaw.html"><i class="icon-tag"></i>CSAW</a>
<a href="./tag/pdf-parser.html"><i class="icon-tag"></i>pdf-parser</a>
<a href="./tag/pdftotext.html"><i class="icon-tag"></i>pdftotext</a>
</footer><!-- /.post-info --></div>
<div class="summary"><p>The third forensics challenge starts with the following text:</p>
<blockquote>
<p>see or do not see</p>
<p>Written by marc</p>
<p><a href="https://ctf.isis.poly.edu/static/uploads/883c7046854e04138c55680ffde90a61/pdf.pdf">pdf.pdf</a></p>
</blockquote>
<p>Hacking PDFs, what fun!</p>
<p>In general, when dealing with reverse-engineering malicious documents, we follow these steps:</p>
<div class="highlight"><pre> <span class="mf">1.</span> <span class="n">We</span> <span class="n">search</span> <span class="k">for</span> <span class="n">malicious</span> <span class="n">embedded</span> <span class="n">code</span> <span class="p">(</span><span class="n">shell</span> <span class="n">code</span><span class="p">,</span> <span class="n">JavaScript</span><span class="p">).</span>
<span class="mf">2.</span> <span class="n">We</span> <span class="n">extract</span> <span class="n">any</span> <span class="n">suspicious ...</span></pre></div>
<a class="btn primary xsmall" href="./csaw-ctf-2014-forensics-200-obscurity.html">more ...</a>
</div>
</div>
<hr />
<div class="article">
<h1><a href="./csaw-ctf-2014-forensics-100-dumpster-diving.html">CSAW CTF 2014 - Forensics 100: "dumpster diving"</a></h1>
<div class="well small"><footer class="post-info">
<abbr class="published" title="2014-09-22T06:20:00">
Mon 22 September 2014 </abbr>
<span class="label"> Category</span>
<a href="./category/forensics.html"><i class="icon-folder-open"></i>Forensics</a>
<span class="label">Tags</span>
<a href="./tag/ctf.html"><i class="icon-tag"></i>CTF</a>
<a href="./tag/csaw.html"><i class="icon-tag"></i>CSAW</a>
<a href="./tag/readelf.html"><i class="icon-tag"></i>readelf</a>
<a href="./tag/mem.html"><i class="icon-tag"></i>mem</a>
</footer><!-- /.post-info --></div>
<div class="summary"><p>This was the first forensic challenge. It starts with the following text:</p>
<blockquote>
<p>dumpsters are cool, but cores are cooler</p>
<p>Written by marc</p>
<p><a href="https://ctf.isis.poly.edu/static/uploads/606580b079e73e14ab2751e35d22ad44/firefox.mem.zip">firefox.mem.zip</a></p>
</blockquote>
<h2>Unziping firefox.mem.zip</h2>
<p>The given file has a funny extension <em>.mem.zip</em>. Before we go ahead and unzip it, let's try to learn ...</p>
<a class="btn primary xsmall" href="./csaw-ctf-2014-forensics-100-dumpster-diving.html">more ...</a>
</div>
</div>
<hr />
<div class="pagination">
<ul>
<li class="prev"><a href="./index3.html">← Previous</a></li>
<li class=""><a href="./index.html">1</a></li>
<li class=""><a href="./index2.html">2</a></li>
<li class=""><a href="./index3.html">3</a></li>
<li class="active"><a href="./index4.html">4</a></li>
<li class=""><a href="./index5.html">5</a></li>
<li class="next"><a href="./index5.html">Next →</a></li>
</ul>
</div>
</div><!--/span-->
</div><!--/row-->
<footer>
<address id="about">
</address><!-- /#about -->
</footer>
</div><!--/.fluid-container-->
<script src="./theme/js/jquery-1.7.2.min.js"></script>
<script src="./theme/js/bootstrap.min.js"></script>
</body>
</html>