Update 2023/07/06: The github account hosting the backdoor has been nuked

On twitter I saw this tweet that warns users of a backdoor in a git repo. I wanted to check it out and see what was happening.

Continue Reading

SVG Image

This challenge was a bit about C++ behavior, and a real life vulnerability! Here’s the description:

I use whatever compiler gives me the least warnings 🤷‍♂️. Wait, you’re saying everyone just ignores warnings anyways? Dope. Let’s fly

Continue Reading

Shmooganography is a little CTF event that takes place each year at Shmoocon in Washington, DC. This CTF is focused on stegonagraphy, and related techniques. I ended up participating in, and coming in first place with my team. I wanted to showcase an interesting method of hiding data that was used in the fourth round of the event.

Continue Reading

|

Tmux is a program that lets me use a terminal more efficiently, with it, I am able to quickly switch between and organize multiple terminal windows and even sessions with ease. But just what is tmux?

Continue Reading

Military Grade was another challenge at 2022’s Car Hack Village that no team was able to solve during the competition. Which means it was perfect to spend some more time diving in and understanding just why it went unsolved. Here’s the description:

This device contains military-grade encryption. Which country’s military is up for debate. Here’s the flag: 3EJQ6KSW4DJZBKGWD8RM6YFW92MU6YFX5AKM29FRV8DUXYA

Continue Reading

CRC’sly was a challenge at Defcon’s Car Hack Village about having a known CRC value and finding something to collide with it. Unfortunately due to the way the challenge was presented on day 1, it was unsolvable. This was due to two issues, first issue: the search space of the flag was too large, 3080 * 3080 * 3080 * 3080 = 89991784960000, which I don’t believe to be able to be brute forced.

Continue Reading