This repository contains writeups I've made to some of the challenges from CTFs in which I participated.
| Name | Category | Tags |
|---|---|---|
| Kolska Leaks | web | LFI |
| Cat Blag | web | git, SQL injection, PHP, webshell |
| SEALed communication | re | C#, pcap |
| Shifting | crypto | known plaintext, maths |
| Visual Steganography | stegano | visual secret sharing |
| Name | Category | Tags |
|---|---|---|
| A ROCk | crypto | ROCA |
| Running Up That Hill | crypto | Hill cipher |
| CodeTiger orz Is Meta | misc | EXIF data |
| Geoguessr Warm-up | misc | OSINT |
| Geoguessr Normal Mode | misc | OSINT |
| kirby!!! | misc | audio steganography, spectrogram |
| Sussy Amogus | misc | PowerShell, malware |
| Trash Royale | misc | PyInstaller |
| save_tyger | pwn | buffer overflow |
| save_tyger2 | pwn | buffer overflow |
| waifu | pwn | format string |
| addition | rev | angr |
| codetiger-orz | rev | obfuscation |
| math test | rev | C |
| minimalist | rev | angr |
| not assembly | rev | assembly |
| Among Us | web | HTTP headers |
| Amy The Hedgehog | web | SQL injection |
| EYANGCH Fan Art Maker | web | XML |
| EYANGCH Fan Art Maker 2.0 | web | XML |
| Flushed Emoji | web | Flask, SSTI, SQL injection |
| Guess The Pokemon | web | SQL injection |
| Kevin's Cookies | web | bruteforce |
| Personal Website | web | source code |
| Secure Website | web | side-channel, timing attack |
| Name | Category | Tags |
|---|---|---|
| Sanity check | misc, warmup | - |
| Flag Bearer | web | JWT |
| e-PUŁAP | web | SQL injection |
| Bad CA | web | LFI, x509 |
| Complex Base Injection | web | LFI, privilege escalation |
| Fileless | re | Windows, PowerShell, C#, process injection |
| Multicast | crypto | RSA, egcd |
| trollface | stegano | LSB steganography |
| Baby thandbox | misc, pwn | LISP, command injection |
| Name | Category | Tags |
|---|---|---|
| Anti-rev | rev | angr |
| Blind maze | misc | pcap |
| MathMAC | crypto | math, modular arithmetic |
| Random Noise | misc | FSK, checksums |
| Revenge of the Blind maze | misc | pcap |
| WOauth a laundry! | web | server side XSS |
| Yet another guessing game | pwn | buffer overflow, ROP, GOT |
| Name | Category | Tags |
|---|---|---|
| Honey | crypto | HNP-2H |
| Melek | crypto | SSS |
| Name | Category | Tags |
|---|---|---|
| Sanity check | misc, warmup | - |
| nWAF | web | JWT, WAF, bruteforce |
| Just Wonderful Turtles | web | JWT, SSTI, incorrect sanitization |
| DoggoWorld | web | HTTP basics |
| S69 | web | reflected XSS |
| 1FA | web | incorrect authentication |
| CPU goes brrr | re | LFSR, optimization |
| Magiczna cat | re | JavaScript, bruteforce |
| Semantic Security | crypto | off-by-one |
| confidentialAlchemy | crypto | known plaintext, bruteforce |
| Weathermaster | pwn | JavaScript, command injection, CVE, LFI |
| Office Retribution | forensics | memory dump, volatility |
| The zettabyte file search | forensics | disk dump, file recovery |
| Over The Domain | stegano | DNS data exfiltration |
| notCrypto | misc | off-by-one |
| Name | Category | Tags |
|---|---|---|
| Build A Flag Workshop | reversing | C, md5 |
| Flag Shop | pwn | buffer overflow, format string |
| Welcome to the Jungle! | pwn | UAF, tcache poisoning, ROP, ret2libc |
| heap01 | pwn | tcache, ret2win |
| Titusville | I-95 (speedrun pwn) | ROP |
| Jupiter | I-95 (speedrun pwn) | format string, GOT |
| Name | Category | Tags |
|---|---|---|
| N0TR5A | crypto | RSA, LLL |