D-CTF Qualifiers 2016 - Web300 like a dipsh*t Markdown version

Published on Tuesday, 27 September 2016 in Security

First of all, wow it's been a while and a lot of things happened since last time I wrote something on my little spot of the Internet...

Last weekend I played the D-CTF Qualifiers 2016 with some friends of mine (@xarkes, jfrankowski and a new friend of mine). I was told that it is not a good CTF due to multiple problems in previous version with the challenges, where for instance some exploit challenge would not be solvable at all. And apparently it was the same this year (see the comments) and it was frustrating at some point...

However, it didn't stop us from having quite a blast. One in particular, the Super Secure Company LLC web challenge, worth 300 points. We used our best tool in French history, called puputerie, or how to gain 300 points like a dipsh*t!

If you're interested, keep reading and I hope you'll forgive me.

More


AppSec EU 2015 Lightning Talk Markdown version

Published on Saturday, 23 May 2015 in Blog

AppSec EU 2015

I just came back from my trip to Amsterdam where I gave a lightning talk about OWTF for the AppSec EU 2015 :)
I also went there for the OWASP Project Summit where I met some of the other OWTF developers and my dear friend Abe, finally!

More


Quals NdH 2015 Clark Kent - re150 Markdown version

Published on Monday, 06 April 2015 in Security, Reverse Engineering

Last week-end I participated to the qualifications of NdH with HackGyver (scoreboard). We gathered at the hackerspace's local with futex, kiwhacks and pastrep (a new member met at the SecuRT 2015). We finished 32 over more than 200 teams that validated at least one challenge. It is not that bad, knowing that some of our key comrades where not available this Saturday.

Clark Kent Reboot

I had to do some stuff that I never did before and it was really fun. That is why I wanted to do the write-up of the Clark Kent reverse engineering challenge.

More


Quals NdH 2015 faceBox - web100 Markdown version

Published on Monday, 06 April 2015 in Security

Last week-end I participated to the qualifications of NdH with HackGyver (scoreboard). We gathered at the hackerspace's local with futex, kiwhacks and pastrep (a new member met at the SecuRT 2015). We finished 32 over more than 200 teams that validated at least one challenge. It is not that bad, knowing that some of our key comrades where not available this Saturday.

Meme 500 Internal Errors Everywhere

I thought that I could write something about their faceBox web challenge.

More


SecuRT 2015 Retrospective Markdown version

Published on Monday, 16 March 2015 in Security

SecuRT third edition took place last Saturday in Montbéliard. It is a special event that tries to raise awareness about security in computer sciences among students. During the first edition, I participated to their CTF, with jvoisin and rboissat under the name of HackGyver, where we finished first!

SecuRT 2015 CTF

Since last year, we decided to organize the challenges for their competition and last week-end, we provided more than 40 different challenges. Now that the event is over, I wanted to review some details here.

More



License: WTFPL2
Contact: contact depier.re