Home Blog About

Amateurctf

Published on
July 18, 2023
AmateurCTF '23 - Pwn - Elfcrafting-V1
ctf pwn amateurctf amateurctf23 writeup elf elfcrafting-v1 memfd_create fexecve
Sending a shebang to let fexecve execute a command for us and get the flag.
Published on
July 18, 2023
AmateurCTF '23 - Pwn - Elfcrafting-V2
ctf pwn amateurctf amateurctf23 writeup elf elfcrafting-v2 memfd_create fexecve shellcode asm
Crafting a custom ELF binary in assembly to execute /bin/sh and inject that inside the file descriptor using memfd_create and fexecve.
Published on
July 18, 2023
AmateurCTF '23 - Pwn - RNTK
ctf pwn amateurctf amateurctf23 writeup rntk random-number canary
Exploiting srand(time(NULL)) to match the generated canary and then overflowing a buffer by generating another random number.
Published on
July 18, 2023
AmateurCTF '23 - Web - Funny Factorials
ctf web amateurctf amateurctf23 writeup lfi
Utilizing LFI in the theme parameter to get the flag.
Published on
July 18, 2023
AmateurCTF '23 - Web - Latek
ctf web amateurctf amateurctf23 writeup lfi latex pdftex
Utilizing Latex to read files from the local system.
Published on
July 18, 2023
AmateurCTF '23 - Web - Waiting an Eternity
ctf web amateurctf amateurctf23 writeup integer-overflow flask
Utilizing integer overflow in the cookie to make the web-app wait for -inf time.