zacheller@home:~/blog$

  • pwnable.kr - mistake

    Prompt We all make mistakes, let’s move on. (don’t take this too seriously, no fancy hacking skill is required at all) This task is based on real event Thanks to dhmonkey hint : operator priority ssh mistake@pwnable.kr -p2222 (pw:guest) Source Code Analysis We are given an executable mistake and its...

  • HackTheBox - Active (Retired)

    Enumeration Likely a Domain Controller since it’s running DNS, Kerberos, LDAP. Domain: active.htb. Common to domain controllers message signing is enabled and required for smb. Most of SMB and NTLM relay is done on machines other than Domain Controller since the functionality is usually turned off. We could maybe dump...

  • pwnable.kr - random

    Prompt Daddy, teach me how to use random value in programming! ssh random@pwnable.kr -p2222 (pw:guest) Solution random.c: #include <stdio.h> int main(){ unsigned int random; random = rand(); // random value! unsigned int key=0; scanf("%d", &key); if( (key ^ random) == 0xdeadbeef ){ printf("Good!\n"); system("/bin/cat flag"); return 0; } printf("Wrong, maybe...

  • pwnable.kr - flag

    Prompt Papa brought me a packed present! let’s open it. Download : http://pwnable.kr/bin/flag This is reversing task. all you need is binary Solution Download the file and figure out what it does. noble@heart:~/cyber/ctf/pwnable.kr/flag$ wget http://pwnable.kr/bin/flag noble@heart:~/cyber/ctf/pwnable.kr/flag$ file flag flag: ELF 64-bit LSB executable, x86-64, version 1 (GNU/Linux), statically linked, no...