It’s been a while since I posted. Hope you all are safe and sound.
One of the challenge that got left unsolved was Blin D rush
Sorry if I put too much rabbit-holes (〒▽〒) . For the people looking for solution you can skip to challenge solution.
It revolved around the CVE-2019–6340 which is Drupal’s REST Module Remote Code Execution vulnerability. …
Writeup for all the Zelda Challenges in Nullcon’s HackIM 2020
Note: Everyone must have solved this differently ,Telling my method here
The Binary/Game for all the first three challenges was same so we had to find all first three flags in the same game only.
Task : Kill any NPC to get the flag
So initially the game has 5 zombies attacking you whose life is shown at the Top Left corner.Their life gets decreased in two cases
Step 1 :Open Cheat Engine , As soon…
Box Name : Hackerfest 2019
Source : VulnHub
Difficulty : Easy
First I ran the following command :
nmap -sV -sC -oA -F 192.168.0.110
Here 192.168.0.110 was the ip of the box hosted in the VM.After scanning we get the following result
I saw an http service is running on port 80.Tried visiting the page and got a webpage hosted as follows:
The Pico CTF was held this month with lots of sec challenges in it.One challenge that was really solved from scratch by me was this
Caesar Cipher 2 .
A string was given which was supposed to be a ciphertext …..wait not just a normal cipher text but a cipher text involving special characters as well
The reason I had to solve it from scratch is because I couldnt find any online service to decipher it with ROTation of more than 25 …LEL …
Hint : ASCII
of course the Cipher text contained special characters so ASCII table was used…