Malware
Run With Affinity
Two independent SYSTEM-level backdoors dropped by a PPI trojan, hiding behind legitimate Windows task names and hex-encoded C2s.
REAL
Categories
Events
Showing 11 of 11 writeups
Boot2Root
Cap
IDOR to FTP creds, then Linux capabilities privesc to root.
HTB
Reverse Engineering
Fibonacci Caesar
Fib-based Caesar with random key; recover plaintext via Pisano period brute force.
DDC2026
Boot2Root
Kopi Pasta
API IDOR to SSH creds, then Baron Samedit privesc.
DDC2026
Reverse Engineering
Fear of Long Words
ret2win via unchecked word length.
DDC2026
Reverse Engineering
Innslippsord
Reversing the innslippsord password check and assembly flow.
ETJ2025
Web Exploitation
NoSQL
Bypass mysql2 placeholder logic with a JSON object trick.
ETJ2025
Forensics
Out of Bounds
PCAP analysis of a Minecraft session with zlib-compressed packets.
JuleCTF2025
Reverse Engineering
Snow Factory
Format-string leak and win function in a festive ELF binary.
JuleCTF2025
Reverse Engineering
Solve Me
Multi-stage password checks and a Salsa-like decrypt for flags.
ETJ2025
Cryptography
Ubalansert
Exploit unbalanced RSA primes with Pollard's Rho.
ETJ2025